CVE-2025-6197

Medium

An open redirect vulnerability has been identified in Grafana OSS organization switching functionality. Prerequisites for exploitation:…

GRAFANA·CWE-601·Published 2025-07-18

CVSS

4.2

EPSS

0.04

KEV

Exploits

cve.orgen

278 chars

An open redirect vulnerability has been identified in Grafana OSS organization switching functionality. Prerequisites for exploitation: - Multiple organizations must exist in the Grafana instance - Victim must be on a different organization than the one specified in the URL

NVDen

278 chars

NVDes

307 chars

Se ha identificado una vulnerabilidad de redirección abierta en la funcionalidad de cambio de organización de Grafana OSS. Requisitos para su explotación: - Deben existir varias organizaciones en la instancia de Grafana. - La víctima debe pertenecer a una organización diferente a la especificada en la URL.

CVSS metrics across sources

Version	Type	Source	Base	Exp	Impact	Vector
3.1	Primary	cve.org	4.2	—	—	CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:L/I:L/A:N
3.1	Secondary	NVD	4.2	1.6	2.5	CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:L/I:L/A:N