cloud foundry Uaa Release (oss) Vulnerabilities

Cloud%20foundry Uaa Release (oss) vulnerabilities.

JSON RSS CSV 🔔 Create Alert Trigger

26 September 2019

Privilege Escalation via Scope Manipulation in UAA
CVE-2019-11279
Cloud FoundryUaa Release (oss)8.7HIGH
Privilege Escalation via Blind SCIM Injection in UAA
CVE-2019-11278
Cloud FoundryUaa Release (oss)8.7HIGH

9 August 2019

UAA SCIM Filter XSS
CVE-2019-11274
Cloud FoundryUaa Release (oss)4.3MEDIUM

5 August 2019

UAA clients.write vulnerability
CVE-2019-11270
Cloud FoundryUaa Release (oss)7.3HIGH

18 July 2019

UAA - Login app subject to clickjacking attack
CVE-2019-3794
Cloud FoundryUaa Release (oss)6.5MEDIUM

11 July 2019

UAA SQL Identity Zone Vulnerability
CVE-2019-11268
Cloud FoundryUaa Release (oss)6.5MEDIUM

19 June 2019

UAA defaults email address to an insecure domain
CVE-2019-3787
Cloud FoundryUaa Release (oss)8.3HIGH

25 April 2019

7 March 2019

UAA allows users to modify their own email address
CVE-2019-3775
Cloud FoundryUaa Release (oss)7.1HIGH