The Doorkeeper gem before 4.2.0 for Ruby might allow remote attackers to conduct replay attacks or revoke arbitrary tokens by leveraging failure to implement the OAuth 2.0 Token Revocation specification.
Metrics
Affected Vendors & Products
References
History
No history.
MITRE
Status: PUBLISHED
Assigner: mitre
Published: 2017-01-23T21:00:00
Updated: 2024-08-06T01:36:28.287Z
Reserved: 2016-08-03T00:00:00
Link: CVE-2016-6582
Vulnrichment
No data.
NVD
Status : Modified
Published: 2017-01-23T21:59:02.110
Modified: 2024-11-21T02:56:22.877
Link: CVE-2016-6582
Redhat
No data.