Show filters
1 Total Results
Displaying 1-1 of 1
Sort by:
Attacker Value
Unknown

CVE-2020-5402

Disclosure Date: February 24, 2020 (last updated February 21, 2025)
In Cloud Foundry UAA, versions prior to 74.14.0, a CSRF vulnerability exists due to the OAuth2 state parameter not being checked in the callback function when authenticating with external identity providers.
Attack Vector: NetworkPrivileges: NoneUser Interaction: Required
0
0