Lucene search
Omniauth-microsoft Graph Security Vulnerabilities
cve
omniauth-microsoft_graph provides an Omniauth strategy for the Microsoft Graph API. Prior to versions 2.0.0, the implementation did not validate the legitimacy of the email attribute of the user nor did it give/document an option to do so, making it susceptible to nOAuth misconfiguration in cases.....
9.8CVSS
7.2AI Score
0.001EPSS
2024-01-02 10:15 PM
18