漏洞信息
尽管我们使用了先进的大模型技术,但其输出仍可能包含不准确或过时的信息。神龙努力确保数据的准确性,但请您根据实际情况进行核实和判断。
Vulnerability Title
UAA User Token Revocation logic error
Vulnerability Description
Inappropriate user token revocation due to a logic error in the token revocation endpoint implementation in Cloudfoundry UAA v77.30.0 to v78.7.0 and in Cloudfoundry Deployment v48.7.0 to v54.10.0.
CVSS Information
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H
Vulnerability Type
N/A
Vulnerability Title
CloudFoundry UAA和CloudFoundry Deployment 安全漏洞
Vulnerability Description
CloudFoundry UAA和CloudFoundry Deployment 都是CloudFoundry基金会的产品。CloudFoundry UAA是一种多租户身份管理服务。CloudFoundry Deployment 是一个代码部署组件。 CloudFoundry UAA和CloudFoundry Deployment存在安全漏洞,该漏洞源于令牌撤销端点存在逻辑错误,可能导致不适当的用户令牌撤销。以下产品及版本受到影响:UAA v77.30.0至v78.7.0版本和Deployment v48
CVSS Information
N/A
Vulnerability Type
N/A