msal@1.15.0 vulnerabilities

The Microsoft Authentication Library (MSAL) for Python library enables your app to access the Microsoft Cloud by supporting authentication of users with Microsoft Azure Active Directory accounts (AAD) and Microsoft Accounts (MSA) using industry standard OAuth2 and OpenID Connect.

Direct Vulnerabilities

Known vulnerabilities in the msal package. This does not include vulnerabilities belonging to this package’s dependencies.

Automatically find and fix vulnerabilities affecting your projects. Snyk scans for vulnerabilities and provides fixes for free.
Fix for free
Vulnerability Vulnerable Version
  • H
Improper Neutralization of Special Elements in Data Query Logic

msal is a The Microsoft Authentication Library (MSAL) for Python library

Affected versions of this package are vulnerable to Improper Neutralization of Special Elements in Data Query Logic due to improper input sanitisation in authcode.py file.

How to fix Improper Neutralization of Special Elements in Data Query Logic?

Upgrade msal to version 1.24.1 or higher.

[,1.24.1)