Grafana has addressed a maximum severity vulnerability (CVE-2025-41115, CVSS 10.0) within its System for Cross-domain Identity Management (SCIM) component. This flaw could permit privilege escalation or user impersonation in certain deployment scenarios. Administrators are urged to update to the latest software version and review SCIM configurations to ensure organizational security.
Grafana Remediates CVSS 10.0 SCIM Vulnerability Enabling Privilege Escalation
Leave a Reply