Hacking News Critical OAuth Vulnerability in Expo Framework Allows Account Hijacking - Printable Version +- (https://hackmyride.com/forum) +-- Forum: Automotive Hacking (https://hackmyride.com/forum/forumdisplay.php?fid=211) +--- Forum: News (https://hackmyride.com/forum/forumdisplay.php?fid=278) +---- Forum: The Hacker News (https://hackmyride.com/forum/forumdisplay.php?fid=279) +---- Thread: Hacking News Critical OAuth Vulnerability in Expo Framework Allows Account Hijacking (/showthread.php?tid=5884)

Critical OAuth Vulnerability in Expo Framework Allows Account Hijacking - The Hacker News - 05-27-2023 Critical OAuth Vulnerability in Expo Framework Allows Account Hijacking A critical security vulnerability has been disclosed in the Open Authorization (OAuth) implementation of the application development framework Expo.io. The shortcoming, assigned the CVE identifier CVE-2023-28131, has a severity rating of 9.6 on the CVSS scoring system. API security firm Salt Labs said the issue rendered services using the framework susceptible to credential leakage, which could https://thehackernews.com/2023/05/critical-oauth-vulnerability-in-expo.html