Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
UAA User Token Revocation logic error
Vulnerability Description
Inappropriate user token revocation due to a logic error in the token revocation endpoint implementation in Cloudfoundry UAA v77.30.0 to v78.7.0 and in Cloudfoundry Deployment v48.7.0 to v54.10.0.
CVSS Information
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H
Vulnerability Type
N/A
Vulnerability Title
CloudFoundry UAA和CloudFoundry Deployment 安全漏洞
Vulnerability Description
CloudFoundry UAA和CloudFoundry Deployment 都是CloudFoundry基金会的产品。CloudFoundry UAA是一种多租户身份管理服务。CloudFoundry Deployment 是一个代码部署组件。 CloudFoundry UAA和CloudFoundry Deployment存在安全漏洞,该漏洞源于令牌撤销端点存在逻辑错误,可能导致不适当的用户令牌撤销。以下产品及版本受到影响:UAA v77.30.0至v78.7.0版本和Deployment v48
CVSS Information
N/A
Vulnerability Type
N/A