Grafana OSS Open Redirect Vulnerability in Organization Switching Functionality

A medium severity open redirect vulnerability has been identified in Grafana OSS versions 11.5.0 and later, excluding Grafana Cloud. This vulnerability arises from the organization switching feature, allowing attackers to redirect users to malicious websites. Exploitation requires knowledge of the victim's current organization and the existence of multiple organizations within the Grafana instance.

Impact

Successful exploitation allows for open redirection, which could be used to achieve cross-site scripting (XSS) by redirecting users to a site that executes malicious JavaScript, similar to CVE-2025-6023.

Remediation

Users can upgrade to Grafana versions 12.0.2+security-01, 11.6.3+security-01, 11.5.6+security-01, 11.4.6+security-01 or 11.3.8+security-01. If upgrading is not possible, Grafana URLs starting with '/'' or '%2F' can be blocked in ingress, or the instance can be configured to have only one organization available.