all InfoSec news logo
all InfoSec news - Your InfoSec news aggregator
Log in Sign up
all InfoSec news

Grafana warns of critical auth bypass due to Azure AD integration

Add to bookmarks
June 24, 2023, 3:18 p.m. | Bill Toulas

BleepingComputer www.bleepingcomputer.com

Grafana has released security fixes for multiple versions of its application, addressing a vulnerability that enables attackers to bypass authentication and take over any Grafana account that uses Azure Active Directory for authentication. [...]

account active directory ad integration application attackers auth authentication azure azure active directory azure ad bypass critical directory fixes grafana integration security vulnerability

Visit resource

More from www.bleepingcomputer.com / BleepingComputer

CEO who sold fake Cisco devices to US military gets 6 years in prison 15 hours ago | www.bleepingcomputer.com
ceo cisco companies counterfeit +14
Bitwarden launches new MFA Authenticator app for iOS, Android 17 hours ago | www.bleepingcomputer.com
android android devices app authenticator +12
CISA urges software devs to weed out path traversal vulnerabilities 17 hours ago | www.bleepingcomputer.com
cisa companies fbi path +9
Police shuts down 12 fraud call centres, arrests 21 suspects 19 hours ago | www.bleepingcomputer.com
albania arrests bosnia bosnia and herzegovina +17
Microsoft warns of "Dirty Stream" attack impacting Android apps 21 hours ago | www.bleepingcomputer.com
android android apps application apps +17
REvil hacker behind Kaseya ransomware attack gets 13 years in prison 22 hours ago | www.bleepingcomputer.com
attack hacker kaseya kaseya ransomware attack +12
Microsoft won't fix Windows 0x80070643 errors, manual fix required 23 hours ago | www.bleepingcomputer.com
automated environment errors fix +5
Cybersecurity consultant arrested after allegedly extorting IT firm 23 hours ago | www.bleepingcomputer.com
arrested confidential consultant cybersecurity +5
HPE Aruba Networking fixes four critical RCE flaws in ArubaOS 1 day, 14 hours ago | www.bleepingcomputer.com
advisory april aruba arubaos +17

Jobs in InfoSec / Cybersecurity

Post a job on infosec-jobs.com Find talent on infosec-jobs.com

Social Engineer For Reverse Engineering Exploit Study

@ Independent study | Remote
View on infosec-jobs.com

Offensive Security Engineer

@ Ivanti | United States, Remote
View on infosec-jobs.com

Senior Security Engineer I

@ Samsara | Remote - US
View on infosec-jobs.com

Senior Principal Information System Security Engineer

@ Chameleon Consulting Group | Herndon, VA
View on infosec-jobs.com

Junior Detections Engineer

@ Kandji | San Francisco
View on infosec-jobs.com

Data Security Engineer/ Architect - Remote United States

@ Stanley Black & Decker | Towson MD USA - 701 E Joppa Rd Bg 700
View on infosec-jobs.com
View more jobs