Critical

DATE	CVE	VULNERABILITY TITLE	RISK
2017-01-23	CVE-2016-6582	7PK - Security Features vulnerability in Doorkeeper Project Doorkeeper The Doorkeeper gem before 4.2.0 for Ruby might allow remote attackers to conduct replay attacks or revoke arbitrary tokens by leveraging failure to implement the OAuth 2.0 Token Revocation specification. network low complexity doorkeeper-project CWE-254 critical	9.1

CVE is a registered MITRE Corporation trademark and MITRE's CVE website is the authoritative source of CVE content. CWE is a registered MITRE Corporation trademark and MITRE's CWE website is the authoritative source of CWE content.