Lucene search
K

2077 matches found

NVD
NVD
added 2017/11/27 10:29 a.m.21 views

CVE-2017-8031

An issue was discovered in Cloud Foundry Foundation cf-release all versions prior to v279 and UAA 30.x versions prior to 30.6, 45.x versions prior to 45.4, 52.x versions prior to 52.1. In some cases, the UAA allows an authenticated user for a particular client to revoke client tokens for other...

5.3CVSS5.1AI score0.01086EPSS
Exploits0References2
CVE
CVE
added 2017/11/27 10:0 a.m.58 views

CVE-2017-8031

The CVE-2017-8031 entry concerns Cloud Foundry cf-release and UAA. Affected products: cf-release (all versions before v279) and UAA (30.x before 30.6; 45.x before 45.4; 52.x before 52.1). Issue: an authenticated user for a given client can revoke client tokens belonging to other users on the same...

5.3CVSS5AI score0.01086EPSS
Exploits0References2Affected Software2
Cvelist
Cvelist
added 2017/11/27 10:0 a.m.23 views

CVE-2017-8031

An issue was discovered in Cloud Foundry Foundation cf-release all versions prior to v279 and UAA 30.x versions prior to 30.6, 45.x versions prior to 45.4, 52.x versions prior to 52.1. In some cases, the UAA allows an authenticated user for a particular client to revoke client tokens for other...

5.1AI score0.01086EPSS
Exploits0References2
Veracode
Veracode
added 2017/11/09 7:30 a.m.25 views

Denial Of Service (DoS) Through Token Revocation

CloudFoundry User Account and Authentication UAA is vulnerable to denial of service DoS attacks. The checktoken endpoint does not validate the clientId when revoking opaque or JWT client tokens, allowing a malicious user to revoke another user's token...

5.3CVSS6.5AI score0.01086EPSS
Exploits0References4Affected Software1
Cloud Foundry
Cloud Foundry
added 2017/11/07 12:0 a.m.40 views

CVE-2017-8031: UAA Denial of Service through client token revocation endpoint | Cloud Foundry

Severity Medium Vendor Cloud Foundry Foundation Affected Cloud Foundry Products and Versions cf-release All versions prior to v279 UAA 30.x versions prior to 30.6 45.x versions prior to 45.4 52.x versions prior to 52.1 Description In some cases, the UAA allows an authenticated user for a particul...

5.3CVSS5.1AI score0.01086EPSS
Exploits0
Veracode
Veracode
added 2017/10/27 2:26 a.m.31 views

Reusable Refresh Tokens

Keycloak services has resuable refresh tokens. If an attacker using a pre-compromised system creates a refresh token pair, this token can be used indefinitely regardless of permission revocation...

7.2CVSS6.9AI score0.01887EPSS
Exploits0References6Affected Software2
NVD
NVD
added 2017/10/26 5:29 p.m.31 views

CVE-2017-12160

It was found that Keycloak oauth would permit an authenticated resource to obtain an access/refresh token pair from the authentication server, permitting indefinite usage in the case of permission revocation. An attacker on an already compromised resource could use this flaw to grant himself...

7.2CVSS6.9AI score0.01887EPSS
Exploits0References4
OSV
OSV
added 2017/10/26 5:29 p.m.3 views

CVE-2017-12160

It was found that Keycloak oauth would permit an authenticated resource to obtain an access/refresh token pair from the authentication server, permitting indefinite usage in the case of permission revocation. An attacker on an already compromised resource could use this flaw to grant himself...

7.2CVSS5.8AI score0.01887EPSS
Exploits0References4
Cvelist
Cvelist
added 2017/10/26 5:0 p.m.55 views

CVE-2017-12160

It was found that Keycloak oauth would permit an authenticated resource to obtain an access/refresh token pair from the authentication server, permitting indefinite usage in the case of permission revocation. An attacker on an already compromised resource could use this flaw to grant himself...

6.8AI score0.01887EPSS
Exploits0References4
CVE
CVE
added 2017/10/26 5:0 p.m.128 views

CVE-2017-12160

CVE-2017-12160 affects Keycloak-based Red Hat Single Sign-On (rh-sso7-keycloak). The flaw in the OAuth flow permits an authenticated resource to obtain an access/refresh token pair from the authentication server, enabling indefinite usage if permissions are revoked. An attacker on a already-compr...

7.2CVSS6.8AI score0.01887EPSS
Exploits0References4Affected Software1
OSV
OSV
added 2017/10/24 6:33 p.m.75 views

GHSA-3M6R-39P3-JQ25 Doorkeeper is vulnerable to replay attacks

The Doorkeeper gem before 4.2.0 for Ruby might allow remote attackers to conduct replay attacks or revoke arbitrary tokens by leveraging failure to implement the OAuth 2.0 Token Revocation specification...

9.1CVSS9.1AI score0.04685EPSS
Exploits0References11
Github Security Blog
Github Security Blog
added 2017/10/24 6:33 p.m.17 views

Doorkeeper is vulnerable to replay attacks

The Doorkeeper gem before 4.2.0 for Ruby might allow remote attackers to conduct replay attacks or revoke arbitrary tokens by leveraging failure to implement the OAuth 2.0 Token Revocation specification...

9.1CVSS4.8AI score0.04685EPSS
Exploits0References10Affected Software1
RedHat Linux
RedHat Linux
added 2017/10/17 7:53 p.m.2 views

keycloak: resource privilege extension via access token in oauth

It was found that Keycloak oauth would permit an authenticated resource to obtain an access/refresh token pair from the authentication server, permitting indefinite usage in the case of permission revocation. An attacker on an already compromised resource could use this flaw to grant himself...

7.2CVSS5.8AI score0.01887EPSS
Exploits0References4
RedHat Linux
RedHat Linux
added 2017/10/17 7:53 p.m.3 views

keycloak: resource privilege extension via access token in oauth

It was found that Keycloak oauth would permit an authenticated resource to obtain an access/refresh token pair from the authentication server, permitting indefinite usage in the case of permission revocation. An attacker on an already compromised resource could use this flaw to grant himself...

7.2CVSS5.8AI score0.01887EPSS
Exploits0References4
RedHat Linux
RedHat Linux
added 2017/10/17 7:53 p.m.91 views

Moderate: Red Hat Security Advisory: rh-sso7-keycloak security update

An update for rh-sso7-keycloak is now available for Red Hat Single Sign-On 7.1 for RHEL 6. Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each...

7.5CVSS6.6AI score0.02432EPSS
Exploits0References7
RedhatCVE
RedhatCVE
added 2017/10/17 7:49 p.m.26 views

CVE-2017-12160

It was found that Keycloak oauth would permit an authenticated resource to obtain an access/refresh token pair from the authentication server, permitting indefinite usage in the case of permission revocation. An attacker on an already compromised resource could use this flaw to grant himself...

7.2CVSS4.4AI score0.01887EPSS
Exploits0References1
RedHat Linux
RedHat Linux
added 2017/10/17 7:42 p.m.4 views

keycloak: resource privilege extension via access token in oauth

It was found that Keycloak oauth would permit an authenticated resource to obtain an access/refresh token pair from the authentication server, permitting indefinite usage in the case of permission revocation. An attacker on an already compromised resource could use this flaw to grant himself...

7.2CVSS5.8AI score0.01887EPSS
Exploits0References4
Hacker One
Hacker One
added 2017/09/28 3:11 a.m.38 views

Slack: Unauthenticated LFI revealing log information

@juji found a bug which allowed the disclosure of local files on certain servers - this included PHP files and logs. We performed a thorough investigation to ensure that this issue was not exploited, and as a precaution revoked tokens which were inadvertently logged. Thanks @juji! Write-up...

6.6AI score
Exploits0
Qualys Blog
Qualys Blog
added 2017/09/19 11:38 a.m.71 views

Fixing HPKP with Certificate Constraints

This is the third post in my series on HPKP. In my first post I declared HPKP dead, and in my second post I explored the possibility of fixing it by introducing pin revocation. Today I will consider an entirely different approach to make HPKP much safer, by changing how it’s activated. In my...

6.8AI score
Exploits0
Qualys Blog
Qualys Blog
added 2017/09/05 9:2 a.m.40 views

Fixing HPKP with Pin Revocation

Last year, almost exactly to the day, I declared HPKP effectively dead. I believed then—and I still do—that HPKP is too complex and too dangerous to be worth the effort. The biggest problem lies in the fact that there is no sufficient margin of safety; pinning failures are always catastrophic...

6.7AI score
Exploits0
Rows per page
Query Builder