A signature verification vulnerability exists in crewjam/saml. This flaw allows an attacker to bypass SAML Authentication. The highest threat from this vulnerability is to confidentiality, integrity, as well as system availability.
The product misinterprets an input, whether from an attacker or another product, in a security-relevant fashion.
Name | Vendor | Start Version | End Version |
---|---|---|---|
Grafana | Grafana | * | 6.7.5 (excluding) |
Grafana | Grafana | 7.0.0 (including) | 7.2.3 (excluding) |
Grafana | Grafana | 7.3.0 (including) | 7.3.6 (excluding) |
Red Hat Enterprise Linux 8 | RedHat | grafana-0:7.3.6-2.el8 | * |
Red Hat OpenShift Container Platform 4.7 | RedHat | openshift4/ose-grafana:v4.7.0-202102130115.p0 | * |