Uber Patches Authentication Bypass Vulnerability on Custom SSO Solution (Threatpost)

2017-07-12 16:36

Uber patched an authentication bypass vulnerability in its homegrown SSO solution that allowed attackers to take over subdomains and steal session cookies.

News URL

http://threatpost.com/uber-patches-authentication-bypass-vulnerability-on-custom-sso-solution/126791/

#authentication #bypass #SSO #threatpost #uber #vulnerability

CVE is a registered MITRE Corporation trademark and MITRE's CVE website is the authoritative source of CVE content. CWE is a registered MITRE Corporation trademark and MITRE's CWE website is the authoritative source of CWE content.