Vulnerabilities/

@okta/oidc-middlewareOpen Redirect vulnerability

Severity:
Medium

Description

An open redirect vulnerability exists in Okta OIDC Middleware prior to version 5.0.0 allowing an attacker to redirect a user to an arbitrary URL.

Affected products and versions Okta OIDC Middleware prior to version 5.0.0.

Resolution The vulnerability is fixed in OIDC Middleware 5.0.0.

Recommendation

Update the @okta/oidc-middleware package to the latest compatible version. Followings are version details:

References

Related Issues

Tags:
npm
@okta/oidc-middleware
Anything's wrong? Let us know Last updated on February 07, 2023

This issue is available in SmartScanner Professional

See Pricing