Google OAuth client library flaw allowed to deploy of malicious payloads | allinfosecnews.com

May 19, 2022, 5:44 p.m. | Pierluigi Paganini

Security Affairs securityaffairs.co

Google addressed a high-severity flaw in its OAuth client library for Java that could allow attackers with a compromised token to deploy malicious payloads. Google addressed a high-severity authentication bypass flaw in Google OAuth Client Library for Java, tracked as CVE-2021-22573 (CVS Score 8.7), that could be exploited by an attacker with a compromised token […]

The post Google OAuth client library flaw allowed to deploy of malicious payloads appeared first on Security Affairs.

breaking news client flaw google hacking information security news it information security library malicious malware oauth pierluigi paganini security

More from securityaffairs.co / Security Affairs

CISA adds Cisco ASA and FTD and CrushFTP VFS flaws to its Known Exploited Vulnerabilities … 7 hours ago | securityaffairs.co

actor agency asa breaking news +28

CISA adds Microsoft Windows Print Spooler flaw to its Known Exploited Vulnerabilities catalog 14 hours ago | securityaffairs.co

agency breaking news catalog cisa +29

DOJ arrested the founders of crypto mixer Samourai for facilitating $2 Billion in illegal transactions 15 hours ago | securityaffairs.co

arrest arrested bitcoin breaking news +23

Google fixed critical Chrome vulnerability CVE-2024-4058 20 hours ago | securityaffairs.co

attacker breaking news browser can +22

Nation-state actors exploited two zero-days in ASA and FTD firewalls to breach government networks 1 day, 7 hours ago | securityaffairs.co

actor adaptive security apt arcanedoor +32

Hackers hijacked the eScan Antivirus update mechanism in malware campaign 1 day, 14 hours ago | securityaffairs.co

antivirus avast backdoors breaking news +27

US offers a $10 million reward for information on four Iranian nationals 1 day, 21 hours ago | securityaffairs.co

10 million assets breaking news contractors +26

The street lights in Leicester City cannot be turned off due to a cyber attack 1 day, 21 hours ago | securityaffairs.co

attack authority breaking news city +14

North Korea-linked APT groups target South Korean defense contractors 2 days, 8 hours ago | securityaffairs.co

agency andariel apt apt groups +29

SOC 2 Manager, Audit and Certification

@ Deloitte | US and CA Multiple Locations

View on infosec-jobs.com

Regional Leader, Cyber Crisis Communications

@ Google | United Kingdom

View on infosec-jobs.com

Regional Intelligence Manager, Compliance, Safety and Risk Management

@ Google | London, UK

View on infosec-jobs.com

Senior Analyst, Endpoint Security

@ Scotiabank | Toronto, ON, CA, M1K5L1

View on infosec-jobs.com

Software Engineer, Security/Privacy, Google Cloud

@ Google | Bengaluru, Karnataka, India

View on infosec-jobs.com

Senior Security Engineer

@ Coinbase | Remote - USA

View on infosec-jobs.com