Vulnerabilities > Cloudfoundry > User Account AND Authentication > 75.2.0
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2021-08-11 | CVE-2021-22098 | Open Redirect vulnerability in Cloudfoundry User Account and Authentication UAA server versions prior to 75.4.0 are vulnerable to an open redirect vulnerability. | 6.1 |
| 2021-07-22 | CVE-2021-22001 | Unspecified vulnerability in Cloudfoundry User Account and Authentication In UAA versions prior to 75.3.0, sensitive information like relaying secret of the provider was revealed in response when deletion request of an identity provider( IdP) of type “oauth 1.0” was sent to UAA server. | 7.5 |