all InfoSec news
Critical OAuth Vulnerability in Expo Framework Allows Account Hijacking
May 27, 2023, 7:45 a.m. | info@thehackernews.com (The Hacker News)
The Hacker News thehackernews.com
The shortcoming, assigned the CVE identifier CVE-2023-28131, has a severity rating of 9.6 on the CVSS scoring system. API security firm Salt Labs said the issue rendered services using the framework susceptible to credential leakage, which could
account account hijacking api api security application application development authorization critical cve cvss development expo framework hijacking implementation issue labs oauth salt salt labs security security vulnerability services severity system vulnerability
More from thehackernews.com / The Hacker News
Jobs in InfoSec / Cybersecurity
SOC 2 Manager, Audit and Certification
@ Deloitte | US and CA Multiple Locations
Senior Manager, Security Compliance (Customer Trust)
@ Box | Tokyo
Cyber Security Engineering Specialist
@ SITEC Consulting | St. Louis, MO, USA 63101
Technical Security Analyst
@ Spire Healthcare | United Kingdom
Embedded Threat Intelligence Team Account Manager
@ Sibylline Ltd | Austin, Texas, United States
Bank Protection Security Officer
@ Allied Universal | Portland, OR, United States