CVE-2019-11270

CVE-2019-11270

Cloud Foundry UAA versions prior to v73.4.0 contain a vulnerability where a malicious client possessing the ?clients.write? authority or scope can bypass the restrictions imposed on clients created via ?clients.write? and create clients with arbitrary scopes that he does not possess.

Source: CVE-2019-11270

답글 남기기

이메일 주소는 공개되지 않습니다. 필수 필드는 *로 표시됩니다