The Doorkeeper gem before 4.2.0 for Ruby might allow remote attackers to conduct replay attacks or revoke arbitrary tokens by leveraging failure to implement the OAuth 2.0 Token Revocation specification.
History

No history.

cve-icon MITRE

Status: PUBLISHED

Assigner: mitre

Published: 2017-01-23T21:00:00

Updated: 2024-08-06T01:36:28.287Z

Reserved: 2016-08-03T00:00:00

Link: CVE-2016-6582

cve-icon Vulnrichment

No data.

cve-icon NVD

Status : Modified

Published: 2017-01-23T21:59:02.110

Modified: 2024-11-21T02:56:22.877

Link: CVE-2016-6582

cve-icon Redhat

No data.