An elevation of privilege vulnerability exists in Azure Active Directory Authentication Library On-Behalf-Of flow, in the way the library caches tokens, aka Azure Active Directory Authentication Library Elevation of Privilege Vulnerability.
Name | Vendor | Start Version | End Version |
---|---|---|---|
Active_directory_authentication_library | Microsoft | 5.0.5 (including) | 5.2.0 (excluding) |
Active_directory_authentication_library | Microsoft | 5.0.0-preview (including) | 5.0.0-preview (including) |
Active_directory_authentication_library | Microsoft | 5.0.1-preview (including) | 5.0.1-preview (including) |
Active_directory_authentication_library | Microsoft | 5.0.2-preview (including) | 5.0.2-preview (including) |
Active_directory_authentication_library | Microsoft | 5.0.3-preview (including) | 5.0.3-preview (including) |
Nuget | Microsoft | 5.2.0 (including) | 5.2.0 (including) |