Security Advisory
CVE-2025-59363
CVE vulnerability detail — eXtreme Datacenter Security Operations
Description
In One Identity OneLogin before 2025.3.0, a request returns the OIDC client secret with GET Apps API v2 (even though this secret should only be returned when an App is first created),