Urbanairship Python-oauth2 — known CVE vulnerabilities
Every CVE whose affected-product data names Urbanairship Python-oauth2, ordered by CVSS severity, with EPSS exploit prediction and CISA KEV status.
CVEs (2)
CVE-2013-4347 — CVSS 5.8 (medium): The (1) make_nonce, (2) generate_nonce, and (3) generate_verifier functions in SimpleGeo python-oauth2 uses weak random numbers to generate…
CVE-2013-4346 — CVSS 4.3 (medium): The Server.verify_request function in SimpleGeo python-oauth2 does not check the nonce, which allows remote attackers to perform replay…