The remote Ubuntu 22.04 LTS host has a package installed that is affected by a vulnerability as referenced in the USN-5632-1 advisory. - OAuthLib is an implementation of the OAuth request-signing lo ...
Continue Reading
September 22, 2022
## Summary IBM Sterling Partner Engagement Manager uses Spring Security OAuth that is vulnerable to a denial of service, caused by initiation of the Authorization Request in an OAuth 2.0 Client applic ...
Continue Reading
September 22, 2022
Microsoft researchers recently investigated an attack where malicious OAuth applications were deployed on compromised cloud tenants and then used to control Exchange servers and spread spam. The inves ...
Continue Reading
September 22, 2022
Microsoft researchers recently investigated an attack where malicious OAuth applications were deployed on compromised cloud tenants and then used to control Exchange servers and spread spam. The inves ...
Continue Reading
September 22, 2022
### Impact This issue allows a client of the API to retrieve more information than the clients OAuth scope permits when making search-type requests. This issue would not allow a client to retrie ...
Continue Reading
September 21, 2022
On September 16, GitHub Security learned that threat actors were targeting GitHub users with a phishing campaign by impersonating CircleCI to harvest user credentials and two-factor codes. While GitHu ...
Continue Reading
September 21, 2022
### Impact This issue allows a client of the API to retrieve more information than the clients OAuth scope permits when making search-type requests. This issue would not allow a client to retrie ...
Continue Reading
September 21, 2022
[
Back to Main
