193 matches found
This Week in Spring - March 29th, 2022
Aloha, Spring fans, from beautiful Maui, Hawaii, where I am with my family on a bit of vacation. Its our daughters Spring break and so were enjoying the family time while we can get it! I wanted to take a brief interlude in between the never-enough time on the beach and all the rum to get this...
ISC BIND Denial of Service Vulnerability (CNVD-2023-25100)
ISC BIND is an open source software implementation of the DNS protocol from ISC, Inc. A denial-of-service vulnerability exists in BIND, which stems from an error in the corresponding processing of the product's authorization server. An attacker could exploit the vulnerability to cause a performan...
ISC BIND 资源管理错误漏洞
ISC BIND is an open source software implementation of the DNS protocol from ISC, Inc. A denial-of-service vulnerability exists in BIND, which stems from an error in the corresponding processing of the product's authorization server. An attacker could exploit the vulnerability to cause a performan...
GHSA-F263-C949-W85G Improper Authorization in Google OAuth Client
PKCE support is not implemented in accordance with the RFC for OAuth 2.0 for Native Apps. Without the use of PKCE, the authorization code returned by an authorization server is not enough to guarantee that the client that issued the initial authorization request is the one that will be authorized...
org.hspconsortium.reference:hspc-reference-auth-server-webapp (>=0.11 <=1.15.3), org.hspconsortium:hsp-authorization-server (=0.8) +1 more potentially affected by CVE-2021-27582 via org.mitre:openid-connect-parent (>=1.2.0 <=1.3.1)
org.mitre:openid-connect-parent MAVEN version =1.2.0, =0.11, =1.15.3 - org.hspconsortium:hsp-authorization-server =0.8 - org.hspconsortium:hsp-reference-authorization =0.8 Source cves: CVE-2021-27582 Source advisory: OSV:GHSA-8P36-Q63G-68QH...
CVE-2021-22696
CXF supports via JwtRequestCodeFilter passing OAuth 2 parameters via a JWT token as opposed to query parameters see: The OAuth 2.0 Authorization Framework: JWT Secured Authorization Request JAR. Instead of sending a JWT token as a "request" parameter, the spec also supports specifying a URI from...
Server Side Request Forgery (SSRF)
MITREid Connect is vulnerable to Server Side Request Forgery SSRF. An attacker is able to request any URL accessible from the authorization server and display its content, leading to a Server Side Request Forgery attack via logouri parameter during registration process. Moreover, a lack of...
CVE-2020-25239
A vulnerability has been identified in SINEMA Remote Connect Server All versions V3.0. The webserver could allow unauthorized actions via special urls for unpriviledged users. The settings of the UMC authorization server could be changed to add a rogue server by an attacker authenticating with...
CVE-2020-25239
A vulnerability has been identified in SINEMA Remote Connect Server All versions V3.0. The webserver could allow unauthorized actions via special urls for unpriviledged users. The settings of the UMC authorization server could be changed to add a rogue server by an attacker authenticating with...
CVE-2020-25239
A vulnerability has been identified in SINEMA Remote Connect Server All versions V3.0. The webserver could allow unauthorized actions via special urls for unpriviledged users. The settings of the UMC authorization server could be changed to add a rogue server by an attacker authenticating with...
CVE-2020-25239
CVE-2020-25239 affects SINEMA Remote Connect Server (all versions prior to v3.0). The vulnerability is an Incorrect Authorization (CWE-863) where a webserver could allow unauthorized actions via special URLs for unprivileged users, enabling an attacker authenticated with limited rights to modify ...
Siemens SINEMA Remote Connect Server Incorrect Authorization Vulnerability
Siemens SINEMA Remote Connect Server is a remote network management platform from Siemens, Germany. The platform is used to remotely access, maintain, control and diagnose the underlying network. An incorrect authorization vulnerability exists in Siemens SINEMA Remote Connect Server. An attacker...
GHSA-MJCR-RQJG-RHG3 Implementation trusts the "me" field returned by the authorization server without verifying it
Impact A malicious user can sign in as a user with any IndieAuth identifier. This is because the implementation does not verify that the final "me" URL value returned by the authorization server belongs to the same domain as the initial value entered by the user. Patches Version 1.1 fixes this...
Implementation trusts the "me" field returned by the authorization server without verifying it
Impact A malicious user can sign in as a user with any IndieAuth identifier. This is because the implementation does not verify that the final "me" URL value returned by the authorization server belongs to the same domain as the initial value entered by the user. Patches Version 1.1 fixes this...
CVE-2020-7692
PKCE support is not implemented in accordance with the RFC for OAuth 2.0 for Native Apps. Without the use of PKCE, the authorization code returned by an authorization server is not enough to guarantee that the client that issued the initial authorization request is the one that will be authorized...
CVE-2020-7692
PKCE support is not implemented in accordance with the RFC for OAuth 2.0 for Native Apps. Without the use of PKCE, the authorization code returned by an authorization server is not enough to guarantee that the client that issued the initial authorization request is the one that will be authorized...
CVE-2020-7692
PKCE support is not implemented in accordance with the RFC for OAuth 2.0 for Native Apps. Without the use of PKCE, the authorization code returned by an authorization server is not enough to guarantee that the client that issued the initial authorization request is the one that will be authorized...
JetBrains IntelliJ IDEA License Server Resolution Vulnerability
JetBrains IntelliJ IDEA is a Czech company JetBrains set of integrated development environment for the Java language . A security vulnerability exists in JetBrains IntelliJ IDEA versions prior to 2020.1. An attacker can exploit the vulnerability to resolve the authorization server to an untrusted...
CVE-2017-14395
Auth 2.0 Authorization Server of ForgeRock Access Management OpenAM 13.5.0-13.5.1 and Access Management AM 5.0.0-5.1.1 does not correctly validate redirecturi for some invalid requests, which allows attackers to execute a script in the user's browser via reflected XSS...
CVE-2017-14394
OAuth 2.0 Authorization Server of ForgeRock Access Management OpenAM 13.5.0-13.5.1 and Access Management AM 5.0.0-5.1.1 does not correctly validate redirecturi for some invalid requests, which allows attackers to perform phishing via an unvalidated redirect...