Lucene search
K

4 matches found

Prion
Prion
added 2019/05/06 5:29 p.m.22 views

Authentication flaw

This vulnerability was caused by an incomplete fix to CVE-2017-0911. Twitter Kit for iOS versions 3.0 to 3.4.0 is vulnerable to a callback verification flaw in the "Login with Twitter" component allowing an attacker to provide alternate credentials. In the final step of "Login with Twitter"...

5.5CVSS5.1AI score0.00511EPSS
Exploits0References1Affected Software1
OSV
OSV
added 2018/02/09 10:29 p.m.16 views

CVE-2017-0911

Twitter Kit for iOS versions 3.0 to 3.2.1 is vulnerable to a callback verification flaw in the "Login with Twitter" component allowing an attacker to provide alternate credentials. In the final step of "Login with Twitter" authentication information is passed back to the application using the...

5.4CVSS5.5AI score
Exploits0References5
CVE
CVE
added 2018/02/09 10:0 p.m.51 views

CVE-2017-0911

CVE-2017-0911 affects Twitter Kit for iOS 3.0–3.2.1. The issue is a callback verification flaw in the Login with Twitter flow: the final response is sent back via the registered custom URL scheme without authenticating the response, enabling forgery and potential association of a Twitter account ...

5.5CVSS5.1AI score0.00511EPSS
Exploits0References5Affected Software1
Cvelist
Cvelist
added 2018/02/09 10:0 p.m.22 views

CVE-2017-0911

Twitter Kit for iOS versions 3.0 to 3.2.1 is vulnerable to a callback verification flaw in the "Login with Twitter" component allowing an attacker to provide alternate credentials. In the final step of "Login with Twitter" authentication information is passed back to the application using the...

5.1AI score0.00511EPSS
Exploits0References5
Rows per page
Query Builder