CVE-2026-3277
The OpenID Connect (OIDC) authentication configuration in PowerShell
Universal before 2026.1.3 stores the OIDC client secret in cleartext in
the .universal/authentication.ps1 script, which allows an attacker with read access to that file to obtain the OIDC client credentials
Universal before 2026.1.3 stores the OIDC client secret in cleartext in
the .universal/authentication.ps1 script, which allows an attacker with read access to that file to obtain the OIDC client credentials
Vendor
Product
CWE
Yayın Tarihi
2026-02-27 16:16:26
Güncelleme
2026-03-30 21:17:10
Source Identifier
security@devolutions.net
KEV Date Added
-