View at Official debian advisory, NVD, CVE.org · CVE detail
Freshness: upstream tracker timestamp is available; use API updated time as primary recency signal.
CVE-2016-6582 not yet assigned priority: Debian including 1 source packages (ruby-doorkeeper), 5 status rows across 5 suites (bookworm, bullseye, forky, sid, trixie): resolved 5.
The Doorkeeper gem before 4.2.0 for Ruby might allow remote attackers to conduct replay attacks or revoke arbitrary tokens by leveraging failure to implement the OAuth 2.0 Token Revocation specification.