CVE-2025-12466 | Teknoloji dünyasından en güncel haberleri ve güvenlikle ilgili gelişmeleri takip edin.

Authentication Bypass Using an Alternate Path or Channel vulnerability in Drupal Simple OAuth (OAuth2) & OpenID Connect allows Authentication Bypass.This issue…
High CVSS: 7.5

CVE-2025-12466

Authentication Bypass Using an Alternate Path or Channel vulnerability in Drupal Simple OAuth (OAuth2) & OpenID Connect allows Authentication Bypass.This issue affects Simple OAuth (OAuth2) & OpenID Connect: from 6.0.0 before 6.0.7.
Vendor
Simple Oauth Project
Product
Simple Oauth
CWE
CWE-288
Yayın Tarihi
2025-10-30 00:15:34
Güncelleme
2025-12-04 14:57:27
Source Identifier
mlhess@drupal.org
KEV Date Added
-

Kategoriler

CWE-288 Simple Oauth HIGH Simple Oauth Project 2025

Referanslar

https://www.drupal.org/sa-contrib-2025-114