AI Score
Confidence
High
EPSS
Percentile
31.5%
In Cloud Foundry UAA, versions prior to 74.14.0, a CSRF vulnerability exists due to the OAuth2 state parameter not being checked in the callback function when authenticating with external identity providers.
www.cloudfoundry.org/blog/cve-2020-5402