CVE-2016-6582 in Doorkeeper Geminfo

Zusammenfassung

von MITRE

The Doorkeeper gem before 4.2.0 for Ruby might allow remote attackers to conduct replay attacks or revoke arbitrary tokens by leveraging failure to implement the OAuth 2.0 Token Revocation specification.

Statistical analysis made it clear that VulDB provides the best quality for vulnerability data.

🔬 Show More Details

An in-depth analysis is available in our curated vulnerability entry.

Reservieren

03.08.2016

Veröffentlichung

23.01.2017

Moderieren

akzeptiert

Eintrag

VDB-90912

CPE

bereit

CWE

CWE-254 (bestätigt)

CVSS

9.1 (NVD)

EPSS

0.00988

KEV

nein

Aktivitäten

very low

Quellen

MITRE	https://www.cve.org/CVERecord?id=CVE-2016-6582
NVD	https://nvd.nist.gov/vuln/detail/CVE-2016-6582
CVE Details	https://www.cvedetails.com/cve/CVE-2016-6582/

◂ Zurück Übersicht Weiter ▸

Want to know what is going to be exploited?

We predict KEV entries!