Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

6 matches found

OSV
OSVadded 2025/10/17 2:54 p.m.2 views

OESA-2025-2430 google-oauth-java-client security update

Written by Google, the Google OAuth Client Library for Java is a powerful and easy-to-use Java library for the OAuth 1.0a and OAuth 2.0 authorization standards. The Google OAuth Client Library for Java is designed to work with any OAuth service on the web, not just with Google APIs. It is built o...

8.7CVSS6.9AI score0.00055EPSS
Exploits0References2
OpenVAS
OpenVASadded 2025/02/25 12:0 a.m.6 views

openSUSE Security Advisory (SUSE-SU-2024:0806-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2025 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

8.7CVSS8AI score0.00055EPSS
Exploits0References4
Tenable Nessus
Tenable Nessusadded 2024/03/08 12:0 a.m.33 views

openSUSE 15 Security Update : google-oauth-java-client (SUSE-SU-2024:0806-1)

The remote openSUSE 15 host has packages installed that are affected by a vulnerability as referenced in the SUSE- SU-2024:0806-1 advisory. - The vulnerability is that IDToken verifier does not verify if token is properly signed. Signature verification makes sure that the token's payload comes fr...

8.7CVSS7.4AI score0.00055EPSS
Exploits0References4
Cvelist
Cvelistadded 2022/05/03 3:45 p.m.24 views

CVE-2021-22573 Incorrect signature verification on Google-oauth-java-client

The vulnerability is that IDToken verifier does not verify if token is properly signed. Signature verification makes sure that the token's payload comes from valid provider, not from someone else. An attacker can provide a compromised token with custom payload. The token will pass the validation ...

8.7CVSS8.7AI score0.00055EPSS
Exploits0References1
IBM Security Bulletins
IBM Security Bulletinsadded 2020/12/03 4:1 p.m.39 views

Security Bulletin: Upgrade javaenv:2.2 to address Gradle oauth authentication concerns.

Summary The version of Gradle shipped in the Fabric java chaincode environment image version 2.2. javaenv.2.2 depends on a vulnerable version of the google ouatth client. Vulnerability Details CVEID: CVE-2020-7692 DESCRIPTION: Google APIs google-oauth-java-client could allow a remote attacker to...

9.1CVSS0.7AI score0.00091EPSS
Exploits1Affected Software1
CNVD
CNVDadded 2020/07/12 12:0 a.m.1 views

Google APIs google-oauth-java-client security bypass vulnerability

Google google-oauth-java-client Google OAuth Client Library for Java is a U.S. Google Google company's a Java-based Google OAuth Open Authorization client library. Google com.google.oauth-client: A security vulnerability exists in versions prior to google-oauth-client 1.31.0. An attacker can...

9.1CVSS7.2AI score0.00091EPSS
Exploits1References1
Rows per page
Query Builder