CVE-2023-46241 | discourse-microsoft-auth microsoft_auth:revoke authorization (GHSA-2w32-w539-3m7r)

Inserito da Angelo Barbosa | Feb 21, 2024 | CVE

A vulnerability was found in discourse-microsoft-auth. It has been declared as critical. Affected by this vulnerability is the function microsoft_auth:revoke. The manipulation leads to incorrect authorization.

This vulnerability is known as CVE-2023-46241. The attack can be launched remotely. There is no exploit available.

It is recommended to apply a patch to fix this issue.

CVE-2023-46241 | discourse-microsoft-auth microsoft_auth:revoke authorization (GHSA-2w32-w539-3m7r)

Post correlati

CVE-2024-7094 | JS Help Desk Plugin up to 2.8.6 on WordPress code injection

CVE-2024-32030 | provectus kafka-ui up to 0.7.1 deserialization (GHSL-2023-229)

CVE-2024-43309 | WP Socio WP Telegram Widget and Join Link Plugin up to 2.1.27 on WordPress cross site scripting

CVE-2024-34595 | Samsung Devices up to SMR Feb-2021 Release 1 SystemUI clickAdapterItem access control