Lucene search
K

CVE-2020-5402: UAA fails to check the state parameter when authenticating with external IDPs | Cloud Foundry

🗓️ 24 Feb 2020 00:00:00Reported by Cloud FoundryType 
cloudfoundry
 cloudfoundry
🔗 www.cloudfoundry.org👁 49 Views

UAA CSRF vulnerability in Cloud Foundry UAA prior to v74.14.

Related
ReporterTitlePublishedViews
Family
CNVD
Cloud Foundry UAA Cross-Site Request Forgery Vulnerability
28 Feb 202000:00
cnvd
CVE
CVE-2020-5402
27 Feb 202019:30
cve
Cvelist
CVE-2020-5402 UAA fails to check the state parameter when authenticating with external IDPs
27 Feb 202019:30
cvelist
EUVD
EUVD-2020-26581
7 Oct 202500:30
euvd
NVD
CVE-2020-5402
27 Feb 202020:15
nvd
OSV
CVE-2020-5402
27 Feb 202020:15
osv
Prion
Design/Logic Flaw
27 Feb 202020:15
prion
Veracode
Cross-Site Request Forgery (CSRF)
28 Feb 202007:40
veracode

Data

Build on a solid foundation with Vulners data

We provide the essential building blocks for cybersecurity solutions with comprehensive, structured, and constantly updated vulnerability and exploits data

Api

Power your application with Vulners API

The Vulners REST API offers reliable, high-performance access to vulnerability intelligence, with 99.9% SLA uptime and CDN-backed data delivery for seamless global access

App

Assess and manage vulnerabilities with Vulners tools

Built on top of Vulners' database and SDK, end-user solutions give security professionals and developers lightweight and powerful tools for vulnerability remediation

24 Feb 2020 00:00Current
8.7High risk
Vulners AI Score8.7
CVSS 26.8
CVSS 3.18.8
CVSS 38.8
EPSS0.00486
49