Sunday, May 28, 2023

Critical OAuth Vulnerability in Expo Framework Allows Account Hijacking

A critical security vulnerability has been disclosed in the Open Authorization (OAuth) implementation of the application development framework Expo.io. The shortcoming, assigned the CVE identifier CVE-2023-28131, has a severity rating of 9.6 on the CVSS scoring system. API security firm Salt Labs said the issue rendered services using the framework susceptible to credential leakage, which could
http://dlvr.it/SplQhC

No comments:

Post a Comment

SLED / FED Virtual Cybersecurity Summit - CISO MAG

SLED / FED Virtual Cybersecurity Summit  CISO MAG http://dlvr.it/TB1n1g