CVE-2024-11217 Oauth-server-container: oauth-server-container logs client secret in debug level

Main / CVE-2024-11217 Oauth-server-container: oauth-server-container logs client secret in debug level

Discription

A vulnerability was found in the OAuth-server. OAuth-server logs the OAuth2 client secret when the logLevel is Debug higher for OIDC/GitHub/GitLab/Google IDPs login…Read More

References

Back to Main

Subscribe for the latest news: