๐ MITREid Connect up to 1.3.3 OpenID Connect Server OAuthConfirmationController.java improper authorization
๐ก Newskategorie: Sicherheitslรผcken
๐ Quelle: vuldb.com
A vulnerability was found in MITREid Connect up to 1.3.3 and classified as critical. Affected by this issue is some unknown processing of the file org/mitre/oauth2/web/OAuthConfirmationController.java of the component OpenID Connect Server Handler. Applying a patch is able to eliminate this problem. The bugfix is ready for download at github.com. ...