One Identity Cloud Access Manager before 8.1.4 Hotfix 1 allows CSRF for logout requests. Rated medium severity (CVSS 6.5), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available and no vendor patch available.
CSRF
Cloud Access Manager
NVD
GitHub
CVSS 3.1
6.5
EPSS
0.7%