exploitDog

GHSA-jmw9-579m-cw2x

Опубликовано: 24 мая 2022

Источник: github

Github: Не прошло ревью

Описание

OAuth flow missing verification checks CE/EE 12.3 and later through 13.0.1 allows unverified user to use OAuth authorization code flow

OAuth flow missing verification checks CE/EE 12.3 and later through 13.0.1 allows unverified user to use OAuth authorization code flow

Ссылки

EPSS

Процентиль: 32%

0.00126

Низкий

CVE ID

Дефекты

CWE-863

Связанные уязвимости

CVE-2020-13272

CVSS3: 7.5

ubuntu

почти 6 лет назад

OAuth flow missing verification checks CE/EE 12.3 and later through 13.0.1 allows unverified user to use OAuth authorization code flow

CVE-2020-13272

CVSS3: 7.5

nvd

почти 6 лет назад

OAuth flow missing verification checks CE/EE 12.3 and later through 13.0.1 allows unverified user to use OAuth authorization code flow

CVE-2020-13272

CVSS3: 7.5

debian

почти 6 лет назад

OAuth flow missing verification checks CE/EE 12.3 and later through 13 ...

EPSS

Процентиль: 32%

0.00126

Низкий

CVE ID

Дефекты

CWE-863