Lucene search
+L

Insufficient Verification Of Data Authenticity

🗓️ 06 Jan 2025 10:38:29Reported by Veracode Vulnerability DatabaseType 
veracode
 veracode
🔗 sca.analysiscenter.veracode.com👁 14 Views

Vulnerability in Wildfly Elytron OIDC client allows authorization code injection via session handling flaws

Related
Detection
Refs
ReporterTitlePublishedViews
Family
attackerkb
CVE-2024-12369
9 Dec 202421:15
attackerkb
cgr
CVE-2024-12369 vulnerabilities
31 Mar 202516:14
cgr
circl
CVE-2024-12369
9 Dec 202420:54
circl
cnnvd
OIDC-Client 数据伪造问题漏洞
9 Dec 202400:00
cnnvd
cve
CVE-2024-12369
9 Dec 202420:53
cve
cvelist
CVE-2024-12369 Elytron-oidc-client: oidc authorization code injection
9 Dec 202420:53
cvelist
euvd
EUVD-2024-3427
3 Oct 202520:07
euvd
github
Duplicate Advisory: WildFly Elytron OpenID Connect Client Extension authorization code injection attack
9 Dec 202421:31
github
github
WildFly Elytron OpenID Connect Client ExtensionOIDC authorization code injection attack
25 Mar 202521:49
github
nvd
CVE-2024-12369
9 Dec 202421:15
nvd
Rows per page
Vulners
Node
OR
wildflywildfly-elytronMatch2.0.0.alpha6java
wildflywildfly-elytronMatch2.2.8.finaljava
wildflywildfly-elytronMatch1.20.3.finaljava
wildflywildfly-elytronMatch2.4.0.cr1java
wildflywildfly-elytronMatch2.2.2.finaljava
wildflywildfly-elytronMatch1.20.4.finaljava
wildflywildfly-elytronMatch1.17.3.finaljava
wildflywildfly-elytronMatch2.0.0.alpha5java
wildflywildfly-elytronMatch2.0.0.alpha8java
wildflywildfly-elytronMatch2.0.0.alpha9java
wildflywildfly-elytronMatch2.5.0.cr1java
wildflywildfly-elytronMatch2.0.0.alpha10java
wildflywildfly-elytronMatch2.6.1.finaljava
wildflywildfly-elytronMatch2.4.2.finaljava
wildflywildfly-elytronMatch1.20.2.finaljava
wildflywildfly-elytronMatch1.18.2.finaljava
wildflywildfly-elytronMatch2.6.0.finaljava
wildflywildfly-elytronMatch1.20.1.finaljava
wildflywildfly-elytronMatch2.0.0.alpha4java
wildflywildfly-elytronMatch1.18.1.finaljava
wildflywildfly-elytronMatch2.2.4.finaljava
wildflywildfly-elytronMatch2.3.0.finaljava
wildflywildfly-elytronMatch1.20.0.finaljava
wildflywildfly-elytronMatch2.2.0.finaljava
wildflywildfly-elytronMatch2.0.0.beta2java
wildflywildfly-elytronMatch2.0.0.alpha2java
wildflywildfly-elytronMatch1.18.0.finaljava
wildflywildfly-elytronMatch1.17.2.finaljava
wildflywildfly-elytronMatch2.0.0.alpha1java
wildflywildfly-elytronMatch2.0.0.alpha7java
wildflywildfly-elytronMatch2.2.6.finaljava
wildflywildfly-elytronMatch2.5.0.finaljava
wildflywildfly-elytronMatch1.19.0.finaljava
wildflywildfly-elytronMatch2.0.0.finaljava
wildflywildfly-elytronMatch1.17.1.finaljava
wildflywildfly-elytronMatch1.18.3.finaljava
wildflywildfly-elytronMatch2.2.5.finaljava
wildflywildfly-elytronMatch2.1.0.finaljava
wildflywildfly-elytronMatch2.2.1.finaljava
wildflywildfly-elytronMatch2.4.0.finaljava
wildflywildfly-elytronMatch2.5.2.finaljava
wildflywildfly-elytronMatch2.0.0.beta3java
wildflywildfly-elytronMatch2.0.0.beta1java
wildflywildfly-elytronMatch2.2.3.finaljava
wildflywildfly-elytronMatch2.2.7.finaljava
wildflywildfly-elytronMatch2.5.1.finaljava
wildflywildfly-elytronMatch2.0.0.alpha3java
wildflywildfly-elytronMatch1.17.0.finaljava
wildflywildfly-elytronMatch1.19.1.finaljava
wildflywildfly-elytronMatch2.4.1.finaljava
wildflywildfly-elytronMatch2.3.1.finaljava

Data

Build on a solid foundation with Vulners data

We provide the essential building blocks for cybersecurity solutions with comprehensive, structured, and constantly updated vulnerability and exploits data

Api

Power your application with Vulners API

The Vulners REST API offers reliable, high-performance access to vulnerability intelligence, with 99.9% SLA uptime and CDN-backed data delivery for seamless global access

App

Assess and manage vulnerabilities with Vulners tools

Built on top of Vulners' database and SDK, end-user solutions give security professionals and developers lightweight and powerful tools for vulnerability remediation

13 Dec 2025 04:28Current
7.1High risk
Vulners AI Score7.1
CVSS 3.14.2
EPSS0.00248
SSVC
14