{"vulnerability": "CVE-2025-41115", "sightings": [{"uuid": "34631870-c10a-4088-bd8b-a2731ac2490e", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "cve-2025-41115", "type": "seen", "source": "https://bsky.app/profile/cyberveille-ch.bsky.social/post/3m6a6bc6ukr2n", "content": "", "creation_timestamp": "2025-11-22T16:00:05.127756Z"}, {"uuid": "731d2407-c2ea-4b66-9bce-0e6cc35cb812", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-41115", "type": "seen", "source": "https://bsky.app/profile/undercode.bsky.social/post/3m6avnurzv42r", "content": "", "creation_timestamp": "2025-11-22T23:01:08.381683Z"}, {"uuid": "a65e087a-2950-4d0b-ab54-db24e75b5b63", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-41115", "type": "seen", "source": "https://bsky.app/profile/getpokemon7.bsky.social/post/3m6bhoqwzi22r", "content": "", "creation_timestamp": "2025-11-23T04:23:46.575035Z"}, {"uuid": "e3ca1b37-feaf-4688-88e7-d142659acf27", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-41115", "type": "seen", "source": "https://bsky.app/profile/cve.skyfleet.blue/post/3m65mpylimg2u", "content": "", "creation_timestamp": "2025-11-21T15:43:14.906045Z"}, {"uuid": "68496cc4-5b7e-4ce3-8307-c9a4e6bd7b40", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-41115", "type": "seen", "source": "https://bsky.app/profile/cybersentinel404.bsky.social/post/3m65myeqs262z", "content": "", "creation_timestamp": "2025-11-21T15:48:07.055086Z"}, {"uuid": "76038b5b-6692-40ac-885c-c78489172e6f", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-41115", "type": "seen", "source": "https://bsky.app/profile/bleepingcomputer.com/post/3m65uciap7t24", "content": "", "creation_timestamp": "2025-11-21T17:58:51.724257Z"}, {"uuid": "330c5ef1-8769-4735-85c5-7e3fe6af2765", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-41115", "type": "seen", "source": "https://bsky.app/profile/redteamnews.bsky.social/post/3m65uu6rpwk2g", "content": "", "creation_timestamp": "2025-11-21T18:08:40.728397Z"}, {"uuid": "fa18f909-3543-4695-80c2-8eb03eb42ec8", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-41115", "type": "seen", "source": "https://bsky.app/profile/matricedigitale.bsky.social/post/3m6czsu4aph26", "content": "", "creation_timestamp": "2025-11-23T19:20:49.039517Z"}, {"uuid": "46fe9eda-3f71-43b2-be46-91b0e320f9f4", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-41115", "type": "seen", "source": "https://threatintel.cc/2025/11/21/grafana-patches-cvss-scim-flaw.html", "content": "", "creation_timestamp": "2025-11-21T16:23:23.000000Z"}, {"uuid": "df0ae084-7837-4cc7-8c14-3ffc3c76d0d8", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-41115", "type": "seen", "source": "https://bsky.app/profile/cyber-news-fi.bsky.social/post/3m66tvkd5qu2f", "content": "", "creation_timestamp": "2025-11-22T03:22:17.318566Z"}, {"uuid": "c2363969-dbe2-4a9f-95c2-e497c7ea3e1d", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-41115", "type": "seen", "source": "https://bsky.app/profile/blackhatnews.tokyo/post/3m77hbmwcac2y", "content": "", "creation_timestamp": "2025-12-05T02:36:15.368515Z"}, {"uuid": "9657948d-a1f8-4e4c-98a3-2ef8f1bb601d", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "4f29edb9-4c4b-44ca-b041-9b050656b6ae", "vulnerability": "CVE-2025-41115", "type": "seen", "source": "https://bsky.app/profile/hackmag.com/post/3mi2f2secfe2l", "content": "", "creation_timestamp": "2026-03-27T15:00:05.235591Z"}, {"uuid": "0d7d9eaa-cfb9-464c-b46b-52d065d30303", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-41115", "type": "seen", "source": "https://t.me/BleepingComputer/23472", "content": "\u200aGrafana warns of max severity admin spoofing vulnerability\n\nGrafana Labs is warning of a maximum severity vulnerability (CVE-2025-41115) in its Enterprise product that can be exploited to treat new users as administrators or for privilege escalation. [...]\n\nhttps://www.bleepingcomputer.com/news/security/grafana-warns-of-max-severity-admin-spoofing-vulnerability/", "creation_timestamp": "2025-11-21T18:05:03.000000Z"}, {"uuid": "4b72172a-8149-4a9b-b39a-493621e68984", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-41115", "type": "seen", "source": "https://t.me/xakep_ru/18534", "content": "\u0412 Grafana \u0438\u0441\u043f\u0440\u0430\u0432\u0438\u043b\u0438 \u043a\u0440\u0438\u0442\u0438\u0447\u0435\u0441\u043a\u0443\u044e \u0443\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u044c, \u043f\u043e\u0437\u0432\u043e\u043b\u044f\u0432\u0448\u0443\u044e \u0432\u044b\u0434\u0430\u0442\u044c \u0441\u0435\u0431\u044f \u0437\u0430 \u0430\u0434\u043c\u0438\u043d\u0438\u0441\u0442\u0440\u0430\u0442\u043e\u0440\u0430\n\n\u0420\u0430\u0437\u0440\u0430\u0431\u043e\u0442\u0447\u0438\u043a\u0438 Grafana Labs \u043f\u0440\u0435\u0434\u0443\u043f\u0440\u0435\u0434\u0438\u043b\u0438 \u043e \u043a\u0440\u0438\u0442\u0438\u0447\u0435\u0441\u043a\u043e\u0439 \u0443\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u0438 CVE-2025-41115 (10 \u0431\u0430\u043b\u043b\u043e\u0432 \u0438\u0437 10 \u0432\u043e\u0437\u043c\u043e\u0436\u043d\u044b\u0445 \u043f\u043e \u0448\u043a\u0430\u043b\u0435 CVSS) \u0432 Grafana Enterprise. \u041f\u0440\u043e\u0431\u043b\u0435\u043c\u0430 \u043f\u043e\u0437\u0432\u043e\u043b\u044f\u0435\u0442 \u0432\u044b\u0434\u0430\u0442\u044c \u043d\u043e\u0432\u043e\u0433\u043e \u043f\u043e\u043b\u044c\u0437\u043e\u0432\u0430\u0442\u0435\u043b\u044f \u0437\u0430 \u0430\u0434\u043c\u0438\u043d\u0438\u0441\u0442\u0440\u0430\u0442\u043e\u0440\u0430 \u0438\u043b\u0438 \u0434\u0440\u0443\u0433\u0443\u044e \u0432\u043d\u0443\u0442\u0440\u0435\u043d\u043d\u044e\u044e \u0443\u0447\u0435\u0442\u043d\u0443\u044e \u0437\u0430\u043f\u0438\u0441\u044c.\n\nhttps://xakep.ru/2025/11/24/grafana-flaw/", "creation_timestamp": "2025-11-24T12:35:40.000000Z"}, {"uuid": "126f4160-b361-476d-aba6-bf2bef94ec4b", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-41115", "type": "seen", "source": "https://t.me/cKure/15704", "content": "\u25a0\u25a0\u25a0\u25a0\u25a0 CVE-2025-41115: Grafana Patches CVSS 10.0 SCIM Flaw Enabling Impersonation and Privilege Escalation.\n\nhttps://thehackernews.com/2025/11/grafana-patches-cvss-100-scim-flaw.html", "creation_timestamp": "2025-11-22T17:22:53.000000Z"}, {"uuid": "37581a74-8bcf-475c-b45e-2c25823beb84", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-41115", "type": "seen", "source": "Telegram/62U7hrbY-FeRBlxUFkHFdSglNFfmrtEpyNQVuuFlD1PqCA", "content": "", "creation_timestamp": "2025-11-21T16:31:38.000000Z"}, {"uuid": "eb3cd2b9-5644-43b7-a58b-8af9660f80fd", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-41115", "type": "seen", "source": "https://bsky.app/profile/ssuitesoftware.bsky.social/post/3m6emgnorrc2k", "content": "", "creation_timestamp": "2025-11-24T10:26:46.400579Z"}, {"uuid": "58c0d6a3-1616-48ec-956c-cb8b630e832f", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-41115", "type": "seen", "source": "https://bsky.app/profile/checkmarxzero.bsky.social/post/3m6ie3qfciv2j", "content": "", "creation_timestamp": "2025-11-25T22:08:02.696982Z"}, {"uuid": "db7fef22-8795-4701-b98c-fe237097914c", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-41115", "type": "seen", "source": "https://bsky.app/profile/hacker.at.thenote.app/post/3m6ahqw3sgk2t", "content": "", "creation_timestamp": "2025-11-22T18:52:17.390851Z"}, {"uuid": "755ca4d5-2901-46bb-86c0-b32a82cde283", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-41115", "type": "seen", "source": "https://bsky.app/profile/grafana.bsky.social/post/3m5zpyvjcgo2w", "content": "", "creation_timestamp": "2025-11-20T02:31:16.395232Z"}, {"uuid": "e4ae78ff-2a72-42a4-b8ae-a38083bc4f26", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-41115", "type": "seen", "source": "https://bsky.app/profile/undercodenews.bsky.social/post/3m65czku5aj2l", "content": "", "creation_timestamp": "2025-11-21T12:49:39.875703Z"}, {"uuid": "b7c9681e-26cd-4d6d-a620-206ea6579cc1", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "cve-2025-41115", "type": "seen", "source": "https://infosec.exchange/users/DarkWebInformer/statuses/115588489681347831", "content": "", "creation_timestamp": "2025-11-21T15:53:02.719396Z"}, {"uuid": "5b0cfbfe-7fc0-4bb6-b7d9-ff26d22b1d58", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "cve-2025-41115", "type": "seen", "source": "https://infosec.exchange/users/DarkWebInformer/statuses/115588494276045392", "content": "", "creation_timestamp": "2025-11-21T15:54:12.831323Z"}, {"uuid": "f403d80f-e292-4c14-a125-fbff9e298f69", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-41115", "type": "seen", "source": "https://infosec.exchange/users/cR0w/statuses/115588496714196234", "content": "", "creation_timestamp": "2025-11-21T15:54:50.019848Z"}, {"uuid": "ae9a0fcd-3439-4277-b388-65d725b48285", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-41115", "type": "seen", "source": "https://cyber.gc.ca/en/alerts-advisories/grafana-security-advisory-av25-778", "content": "", "creation_timestamp": "2025-11-21T14:30:05.000000Z"}, {"uuid": "af3a476f-9505-441e-8027-02d2f744ae68", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-41115", "type": "seen", "source": "https://thehackernews.com/2025/11/grafana-patches-cvss-100-scim-flaw.html", "content": "", "creation_timestamp": "2025-11-21T14:40:00.000000Z"}, {"uuid": "699bcf3c-1e3c-4ca5-92f6-fbde461253e8", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-41115", "type": "seen", "source": "https://bsky.app/profile/allsafeus.bsky.social/post/3m65renunma2s", "content": "", "creation_timestamp": "2025-11-21T17:06:21.514274Z"}, {"uuid": "e1ff10fe-7c48-4e08-8c97-76adfd6a2ff0", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-41115", "type": "seen", "source": "https://infosec.exchange/users/edwardk/statuses/115588844444036862", "content": "", "creation_timestamp": "2025-11-21T17:23:15.696585Z"}, {"uuid": "b33f0ec6-0808-4ed6-a140-828ae368c4d6", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-41115", "type": "seen", "source": "https://bsky.app/profile/e-kiledjian.bsky.social/post/3m65sebboak2t", "content": "", "creation_timestamp": "2025-11-21T17:24:06.268914Z"}, {"uuid": "a5382058-064f-4304-afb8-5d4d37360787", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-41115", "type": "seen", "source": "https://bsky.app/profile/eyalestrin.bsky.social/post/3m6cscutg5x2l", "content": "", "creation_timestamp": "2025-11-23T17:06:36.088405Z"}, {"uuid": "07a08cf4-6b78-474c-8669-7f4d4ee2b424", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-41115", "type": "seen", "source": "https://bsky.app/profile/pmloik.bsky.social/post/3m6drg4sqms2d", "content": "", "creation_timestamp": "2025-11-24T02:23:11.386183Z"}, {"uuid": "2bf529e4-75c9-427f-aece-f565e4ba960e", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-41115", "type": "seen", "source": "https://bsky.app/profile/pmloik.bsky.social/post/3m66pwtinwk2v", "content": "", "creation_timestamp": "2025-11-22T02:13:25.837147Z"}, {"uuid": "875eaacd-68ac-4df3-8bf0-1babfae5f06c", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-41115", "type": "published-proof-of-concept", "source": "Telegram/BTHsSew0OOPVla7Fug7qGoG3AE-1VE1U7EN66KPazST-e4k", "content": "", "creation_timestamp": "2025-12-03T21:00:04.000000Z"}, {"uuid": "e7a3d96c-b285-497c-af2d-3e79047f358d", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-41115", "type": "published-proof-of-concept", "source": "https://t.me/GithubRedTeam/61518", "content": "GitHub\u76d1\u63a7\u6d88\u606f\u63d0\u9192\uff01\uff01\uff01 \n\n\u66f4\u65b0\u4e86\uff1aCVE-2025\n\u63cf\u8ff0\uff1aExploit and test stand for CVE-2025-41115\nURL\uff1ahttps://github.com/I3r1h0n/GrafanaSCIMalform\n\n\u6807\u7b7e\uff1a#CVE-2025", "creation_timestamp": "2025-12-03T16:26:16.000000Z"}, {"uuid": "c6ecb5ef-6044-436e-b7a2-27e9ed292ebf", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-41115", "type": "published-proof-of-concept", "source": "https://t.me/GithubRedTeam/60383", "content": "GitHub\u76d1\u63a7\u6d88\u606f\u63d0\u9192\uff01\uff01\uff01 \n\n\u66f4\u65b0\u4e86\uff1aCVE-2025\n\u63cf\u8ff0\uff1aCVE-2025-41115\nURL\uff1ahttps://github.com/B1ack4sh/Blackash-CVE-2025-41115\n\n\u6807\u7b7e\uff1a#CVE-2025", "creation_timestamp": "2025-11-21T11:18:46.000000Z"}, {"uuid": "521f2096-e06d-426f-8056-8df8e809b270", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-41115", "type": "seen", "source": "https://t.me/codeby_sec/9616", "content": "\ud83d\uded1 Grafana \u0432 \u043e\u043f\u0430\u0441\u043d\u043e\u0441\u0442\u0438!\n\n\ud83d\udca0 Grafana \u0438\u0441\u043f\u0440\u0430\u0432\u043b\u044f\u0435\u0442 \u0443\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u044c CVSS 10.0 SCIM, \u043f\u043e\u0437\u0432\u043e\u043b\u044f\u044e\u0449\u0443\u044e \u0432\u044b\u0434\u0430\u0432\u0430\u0442\u044c \u0441\u0435\u0431\u044f \u0437\u0430 \u0434\u0440\u0443\u0433\u043e\u0433\u043e \u0438 \u043f\u043e\u0432\u044b\u0448\u0430\u0442\u044c \u043f\u0440\u0438\u0432\u0438\u043b\u0435\u0433\u0438\u0438\n\n\ud83c\udf10 \u0423\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u044c, \u043e\u0431\u043e\u0437\u043d\u0430\u0447\u0435\u043d\u043d\u0430\u044f \u043a\u0430\u043a CVE-2025-41115 , \u0438\u043c\u0435\u0435\u0442 \u043e\u0446\u0435\u043d\u043a\u0443 CVSS 10,0. \u041e\u043d\u0430 \u0441\u0432\u044f\u0437\u0430\u043d\u0430 \u0441 \u043a\u043e\u043c\u043f\u043e\u043d\u0435\u043d\u0442\u043e\u043c \u0441\u0438\u0441\u0442\u0435\u043c\u044b \u0443\u043f\u0440\u0430\u0432\u043b\u0435\u043d\u0438\u044f \u043c\u0435\u0436\u0434\u043e\u043c\u0435\u043d\u043d\u043e\u0439 \u0438\u0434\u0435\u043d\u0442\u0438\u0444\u0438\u043a\u0430\u0446\u0438\u0435\u0439 ( SCIM ), \u043a\u043e\u0442\u043e\u0440\u044b\u0439 \u043e\u0431\u0435\u0441\u043f\u0435\u0447\u0438\u0432\u0430\u0435\u0442 \u0430\u0432\u0442\u043e\u043c\u0430\u0442\u0438\u0447\u0435\u0441\u043a\u0443\u044e \u043f\u043e\u0434\u0433\u043e\u0442\u043e\u0432\u043a\u0443 \u0438 \u0443\u043f\u0440\u0430\u0432\u043b\u0435\u043d\u0438\u0435 \u043f\u043e\u043b\u044c\u0437\u043e\u0432\u0430\u0442\u0435\u043b\u044f\u043c\u0438.\n\n\u2196\ufe0f \u00ab\u0412 Grafana \u0432\u0435\u0440\u0441\u0438\u0438 12.x, \u0433\u0434\u0435 \u0432\u043a\u043b\u044e\u0447\u0435\u043d\u043e \u0438 \u043d\u0430\u0441\u0442\u0440\u043e\u0435\u043d\u043e \u043e\u0431\u0435\u0441\u043f\u0435\u0447\u0435\u043d\u0438\u0435 SCIM, \u0443\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u044c \u0432 \u043e\u0431\u0440\u0430\u0431\u043e\u0442\u043a\u0435 \u0443\u0434\u043e\u0441\u0442\u043e\u0432\u0435\u0440\u0435\u043d\u0438\u0439 \u043f\u043e\u043b\u044c\u0437\u043e\u0432\u0430\u0442\u0435\u043b\u0435\u0439 \u043f\u043e\u0437\u0432\u043e\u043b\u044f\u0435\u0442 \u0432\u0440\u0435\u0434\u043e\u043d\u043e\u0441\u043d\u043e\u043c\u0443 \u0438\u043b\u0438 \u0441\u043a\u043e\u043c\u043f\u0440\u043e\u043c\u0435\u0442\u0438\u0440\u043e\u0432\u0430\u043d\u043d\u043e\u043c\u0443 \u043a\u043b\u0438\u0435\u043d\u0442\u0443 SCIM \u043f\u0440\u0435\u0434\u043e\u0441\u0442\u0430\u0432\u043b\u044f\u0442\u044c \u043f\u043e\u043b\u044c\u0437\u043e\u0432\u0430\u0442\u0435\u043b\u044e \u0447\u0438\u0441\u043b\u043e\u0432\u043e\u0439 \u0432\u043d\u0435\u0448\u043d\u0438\u0439 \u0438\u0434\u0435\u043d\u0442\u0438\u0444\u0438\u043a\u0430\u0442\u043e\u0440, \u0447\u0442\u043e, \u0432 \u0441\u0432\u043e\u044e \u043e\u0447\u0435\u0440\u0435\u0434\u044c, \u043c\u043e\u0436\u0435\u0442 \u043f\u043e\u0437\u0432\u043e\u043b\u0438\u0442\u044c \u043f\u0435\u0440\u0435\u043e\u043f\u0440\u0435\u0434\u0435\u043b\u0438\u0442\u044c \u0432\u043d\u0443\u0442\u0440\u0435\u043d\u043d\u0438\u0435 \u0438\u0434\u0435\u043d\u0442\u0438\u0444\u0438\u043a\u0430\u0442\u043e\u0440\u044b \u043f\u043e\u043b\u044c\u0437\u043e\u0432\u0430\u0442\u0435\u043b\u0435\u0439 \u0438 \u043f\u0440\u0438\u0432\u0435\u0441\u0442\u0438 \u043a \u0432\u044b\u0434\u0430\u0447\u0435 \u0441\u0435\u0431\u044f \u0437\u0430 \u0434\u0440\u0443\u0433\u043e\u0435 \u043b\u0438\u0446\u043e \u0438\u043b\u0438 \u043f\u043e\u0432\u044b\u0448\u0435\u043d\u0438\u044e \u043f\u0440\u0438\u0432\u0438\u043b\u0435\u0433\u0438\u0439\u00bb, \u2014 \u0441\u043e\u043e\u0431\u0449\u0438\u043b \u043f\u0440\u0435\u0434\u0441\u0442\u0430\u0432\u0438\u0442\u0435\u043b\u044c \u0438\u0437 Grafana \n\n\u041f\u0440\u0438 \u044d\u0442\u043e\u043c \u0443\u0441\u043f\u0435\u0448\u043d\u0430\u044f \u044d\u043a\u0441\u043f\u043b\u0443\u0430\u0442\u0430\u0446\u0438\u044f \u0437\u0430\u0432\u0438\u0441\u0438\u0442 \u043e\u0442 \u0441\u043e\u0431\u043b\u044e\u0434\u0435\u043d\u0438\u044f \u043e\u0431\u043e\u0438\u0445 \u0443\u0441\u043b\u043e\u0432\u0438\u0439:\n\ud83d\udd3a \u0424\u043b\u0430\u0433 \u0444\u0443\u043d\u043a\u0446\u0438\u0438 enableSCIM \u0443\u0441\u0442\u0430\u043d\u043e\u0432\u043b\u0435\u043d \u0432 \u0437\u043d\u0430\u0447\u0435\u043d\u0438\u0435 true;\n\ud83d\udd3a \u041f\u0430\u0440\u0430\u043c\u0435\u0442\u0440 \u043a\u043e\u043d\u0444\u0438\u0433\u0443\u0440\u0430\u0446\u0438\u0438 user_sync_enabled \u0432 \u0431\u043b\u043e\u043a\u0435 [auth.scim] \u0438\u043c\u0435\u0435\u0442 \u0437\u043d\u0430\u0447\u0435\u043d\u0438\u0435 true.\n\n\u0423\u043a\u0430\u0437\u0430\u043d\u043d\u044b\u0439 \u043d\u0435\u0434\u043e\u0441\u0442\u0430\u0442\u043e\u043a \u0437\u0430\u0442\u0440\u0430\u0433\u0438\u0432\u0430\u0435\u0442 \u0432\u0435\u0440\u0441\u0438\u0438 Grafana Enterprise \u043e\u0442 12.0.0 \u0434\u043e 12.2.1. \u041e\u043d \u0431\u044b\u043b \u0443\u0441\u0442\u0440\u0430\u043d\u0435\u043d \u0432 \u0441\u043b\u0435\u0434\u0443\u044e\u0449\u0438\u0445 \u0432\u0435\u0440\u0441\u0438\u044f\u0445 \u043f\u0440\u043e\u0433\u0440\u0430\u043c\u043c\u043d\u043e\u0433\u043e \u043e\u0431\u0435\u0441\u043f\u0435\u0447\u0435\u043d\u0438\u044f:\n\n\ud83d\udd3a Grafana Enterprise 12.0.6+security-01\n\ud83d\udd3a Grafana Enterprise 12.1.3+security-01\n\ud83d\udd3a Grafana Enterprise 12.2.1+security-01\n\ud83d\udd3a Grafana Enterprise 12.3.0\n\n\u2753 \u0410 \u0432\u044b \u0438\u0441\u043f\u043e\u043b\u044c\u0437\u0443\u0435\u0442\u0435 Grafana \u0432 \u0441\u0432\u043e\u0435\u0439 \u0438\u043d\u0444\u0440\u0430\u0441\u0442\u0440\u0443\u043a\u0442\u0443\u0440\u0435?\n\n\u27a1\ufe0f \u0412\u0441\u0435 \u043d\u0430\u0448\u0438 \u043a\u0430\u043d\u0430\u043b\u044b \ud83d\udcac\u0412\u0441\u0435 \u043d\u0430\u0448\u0438 \u0447\u0430\u0442\u044b \u26a1\ufe0f \u0414\u043b\u044f \u0441\u0432\u044f\u0437\u0438 \u0441 \u043c\u0435\u043d\u0435\u0434\u0436\u0435\u0440\u043e\u043c", "creation_timestamp": "2025-12-22T13:24:41.000000Z"}, {"uuid": "1074395f-ad62-4056-8e5d-f451965b7ee7", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-41115", "type": "seen", "source": "https://bsky.app/profile/merrua.bsky.social/post/3m67nhfe45s2k", "content": "", "creation_timestamp": "2025-11-22T11:01:43.418963Z"}, {"uuid": "f27dbd9a-bb56-41d1-91b9-b68f43458ebd", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-41115", "type": "seen", "source": "https://bsky.app/profile/fetchfeeds.bsky.social/post/3m6esrepdo32u", "content": "", "creation_timestamp": "2025-11-24T12:20:02.031313Z"}, {"uuid": "dcf11f09-17e9-4407-b571-42f2ff64ac36", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-41115", "type": "seen", "source": "https://infosec.exchange/users/technadu/statuses/115594652785515956", "content": "", "creation_timestamp": "2025-11-22T18:00:25.134339Z"}, {"uuid": "a917b83a-7fbf-4dc0-8525-12028a697fcb", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-41115", "type": "seen", "source": "https://bsky.app/profile/technadu.com/post/3m6aeykg5g22w", "content": "", "creation_timestamp": "2025-11-22T18:03:00.310130Z"}, {"uuid": "cf03b7db-061d-4aeb-ba46-3041838de1f2", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-41115", "type": "seen", "source": "https://bsky.app/profile/getpokemon7.bsky.social/post/3m6baixoehc2r", "content": "", "creation_timestamp": "2025-11-23T02:15:14.932982Z"}, {"uuid": "b9fbaa91-2f28-4ac0-b2dd-2963881fc8d9", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-41115", "type": "seen", "source": "https://bsky.app/profile/pmloik.bsky.social/post/3m6bb5jvbdu2m", "content": "", "creation_timestamp": "2025-11-23T02:26:43.802828Z"}, {"uuid": "238e52f9-0b98-4f4e-9e7a-17d501f5d504", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-41115", "type": "seen", "source": "https://gist.github.com/Darkcrai86/eb23a2b94593883b8ec413a49f8937f4", "content": "", "creation_timestamp": "2025-11-21T10:18:04.000000Z"}, {"uuid": "725a88fc-40e7-4121-ac21-af1cc6f23d95", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "cve-2025-41115", "type": "seen", "source": "https://infosec.exchange/users/offseq/statuses/115591126954895432", "content": "", "creation_timestamp": "2025-11-22T03:03:45.457473Z"}, {"uuid": "53c87ae0-4e54-4d5b-9b81-9febb4f89e3b", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "cve-2025-41115", "type": "seen", "source": "https://bsky.app/profile/offseq.bsky.social/post/3m66ssnx7kv25", "content": "", "creation_timestamp": "2025-11-22T03:03:46.462614Z"}, {"uuid": "81778909-7a60-4afe-b21b-37e9993f172c", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-41115", "type": "seen", "source": "https://bsky.app/profile/opsmatters.com/post/3m7hc6e6bxl26", "content": "", "creation_timestamp": "2025-12-08T05:26:15.008443Z"}, {"uuid": "0e6b82a3-cb01-43e8-9e88-034c8eb847df", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-41115", "type": "published-proof-of-concept", "source": "Telegram/0BktyqjdT1jH1XVTqezzVZdgYt6Xr2AbrSq2Qm63rAu8snM", "content": "", "creation_timestamp": "2025-11-21T15:00:09.000000Z"}, {"uuid": "7d9cad1e-3cdd-4ec8-9cdf-64cd5d7772ab", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-41115", "type": "seen", "source": "https://t.me/HackerNewscyber/2636", "content": "\u2708\ufe0f\u0647\u06a9\u0631 \u0646\u06cc\u0648\u0632:Grafana \u0646\u0633\u062e\u0647\u200c\u0647\u0627\u06cc Enterprise \u0631\u0627 \u0628\u0631\u0627\u06cc \u0631\u0641\u0639 \u0622\u0633\u06cc\u0628\u200c\u067e\u0630\u06cc\u0631\u06cc \u0628\u062d\u0631\u0627\u0646\u06cc SCIM \u0628\u0647\u200c\u0631\u0648\u0632\u0631\u0633\u0627\u0646\u06cc \u06a9\u0631\u062f\n\n\ud83c\udfa5\u0634\u0631\u06a9\u062a Grafana \u0647\u0634\u062f\u0627\u0631 \u0627\u0645\u0646\u06cc\u062a\u06cc \u0634\u062f\u06cc\u062f\u06cc \u0628\u0631\u0627\u06cc \u06a9\u0627\u0631\u0628\u0631\u0627\u0646 Enterprise \u0645\u0646\u062a\u0634\u0631 \u06a9\u0631\u062f. \u0622\u0633\u06cc\u0628\u200c\u067e\u0630\u06cc\u0631\u06cc CVE-2025-41115 \u0628\u0627 \u0627\u0645\u062a\u06cc\u0627\u0632 CVSS 10.0 \u062f\u0631 \u0633\u06cc\u0633\u062a\u0645 SCIM \u0627\u06cc\u0646 \u067e\u0644\u062a\u0641\u0631\u0645 \u0634\u0646\u0627\u0633\u0627\u06cc\u06cc \u0634\u062f\u0647 \u0648 \u0645\u06cc\u200c\u062a\u0648\u0627\u0646\u062f \u062f\u0631 \u0634\u0631\u0627\u06cc\u0637 \u062e\u0627\u0635 \u0628\u0627\u0639\u062b \u062c\u0639\u0644 \u0647\u0648\u06cc\u062a \u06cc\u0627 \u0627\u0641\u0632\u0627\u06cc\u0634 \u062f\u0633\u062a\u0631\u0633\u06cc \u06a9\u0627\u0631\u0628\u0631\u0627\u0646 \u0634\u0648\u062f.\n\n\ud83c\udfa4\u0627\u06cc\u0646 \u0645\u0634\u06a9\u0644 \u0641\u0642\u0637 \u0632\u0645\u0627\u0646\u06cc \u0642\u0627\u0628\u0644 \u0628\u0647\u0631\u0647\u200c\u0628\u0631\u062f\u0627\u0631\u06cc \u0627\u0633\u062a \u06a9\u0647 \u0642\u0627\u0628\u0644\u06cc\u062a SCIM \u0641\u0639\u0627\u0644 \u0648 \u06af\u0632\u06cc\u0646\u0647 user_sync_enabled \u0631\u0648\u0634\u0646 \u0628\u0627\u0634\u062f. \u0645\u0647\u0627\u062c\u0645 \u0645\u06cc\u200c\u062a\u0648\u0627\u0646\u062f \u0628\u0627 \u0627\u0631\u0633\u0627\u0644 \u06cc\u06a9 externalId \u0639\u062f\u062f\u06cc\u060c \u0628\u0647 \u062d\u0633\u0627\u0628\u200c\u0647\u0627\u06cc \u062f\u0627\u062e\u0644\u06cc \u0645\u0627\u0646\u0646\u062f \u0627\u062f\u0645\u06cc\u0646 \u062f\u0633\u062a\u0631\u0633\u06cc \u067e\u06cc\u062f\u0627 \u06a9\u0646\u062f.\n\n\ud83c\udfa5\u0646\u0633\u062e\u0647\u200c\u0647\u0627\u06cc \u0627\u0645\u0646 \u0634\u0627\u0645\u0644 12.0.6+security-01\u060c 12.1.3+security-01\u060c 12.2.1+security-01 \u0648 12.3.0 \u0647\u0633\u062a\u0646\u062f. \u06a9\u0627\u0631\u0628\u0631\u0627\u0646 Enterprise \u0628\u0627\u06cc\u062f \u0647\u0631\u0686\u0647 \u0633\u0631\u06cc\u0639\u200c\u062a\u0631 \u0633\u06cc\u0633\u062a\u0645 \u062e\u0648\u062f \u0631\u0627 \u0628\u0647\u200c\u0631\u0648\u0632\u0631\u0633\u0627\u0646\u06cc \u06a9\u0646\u0646\u062f \u062a\u0627 \u0627\u0632 \u0633\u0648\u0621\u0627\u0633\u062a\u0641\u0627\u062f\u0647 \u0627\u062d\u062a\u0645\u0627\u0644\u06cc \u062c\u0644\u0648\u06af\u06cc\u0631\u06cc \u0634\u0648\u062f.\n\n\n\u2705 @HackerNewsCyber", "creation_timestamp": "2025-11-22T09:26:19.000000Z"}, {"uuid": "02b2f8d3-349c-4082-9225-eeb6d3f75b7b", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-41115", "type": "published-proof-of-concept", "source": "Telegram/4pwzrJnceRLyEgpbd6VO8VdJVifSdOcVQ4b7TmcAbl02Blg", "content": "", "creation_timestamp": "2026-01-08T17:13:19.000000Z"}]}