All 5 CVE vulnerabilities found in UAA, with AI-generated Chinese analysis, references, and POCs.
Vendor: Cloud Foundry
| CVE ID | Title | CVSS | Severity | Published |
|---|---|---|---|---|
| CVE-2026-22723 | UAA User Token Revocation logic error | 6.5 | Medium | 2026-03-05 |
| CVE-2025-22246 | CVE-2025-22246 – UAA Private Key Exposure | 3.0 | Low | 2025-05-13 |
| CVE-2024-38806 | UAA Failure to Remove Shadow User’s Access CWE-440 | 3.9 | Low | 2024-07-18 |
| CVE-2020-5402 | UAA fails to check the state parameter when authenticating with external IDPs CWE-352 | 8.8 | - | 2020-02-27 |
| CVE-2018-15761 | UAA Privilege Escalation | 8.8 | - | 2018-11-19 |
All 5 known CVE vulnerabilities affecting UAA with full Chinese analysis, references, and POCs where available.