All 3 CVE vulnerabilities found in OAuth, with AI-generated Chinese analysis, references, and POCs.
Vendor: CORDEA
| CVE ID | Title | CVSS | Severity | Published |
|---|---|---|---|---|
| CVE-2026-13707 | Session fixation attacks on improperly configured OAuth 1.0a tools CWE-384 | - | - | 2026-07-01 |
| CVE-2024-42476 | oauth CSRF vulnerability CWE-352 | 6.5 | Medium | 2024-08-15 |
| CVE-2024-42475 | OAuth library for nim allows insecure generation of state values by generateState - entropy too low and uses regular PRNG instead of CSPRNG CWE-330 | 6.5 | Medium | 2024-08-15 |
All 3 known CVE vulnerabilities affecting OAuth with full Chinese analysis, references, and POCs where available.