Lucene search
GoogleOSV:GO-2021-0109HistoryJul 28, 2021 - 6:08 p.m.
Improper handling of token revocation in github.com/ory/fosite
2021-07-2818:08:05
Google
osv.dev
17
improper handling
token revocation
error handling
github
ory
fosite
exploit
storage
software
Due to improper error handling, an error with the underlying token storage may cause a user to believe a token has been successfully revoked when it is in fact still valid. An attackers ability to exploit this relies on an ability to trigger errors in the underlying storage.
Related
osv
osv
Ory fosite contains Improper Handling of Exceptional Conditions
2021-05-24 16:57:39
CVE-2020-15223
2020-09-24 17:15:13
github
github
Ory fosite contains Improper Handling of Exceptional Conditions
2021-05-24 16:57:39
prion
prion
Design/Logic Flaw
2020-09-24 17:15:00
veracode
veracode
Insecure Error Handling
2020-09-25 03:51:11
cvelist
cvelist
CVE-2020-15223 Ignored storage errors on token revokation in ORY Fosite
2020-09-24 16:15:45
cve
cve
CVE-2020-15223
2020-09-24 17:15:13
nvd
nvd
CVE-2020-15223
2020-09-24 17:15:13