Medium
Google OAuth Client Library for Java could allow a remote attacker to bypass security restrictions, caused by improper verification of token signatures. By sending a specially-crafted request, an attacker could exploit this vulnerability to bypass verification on the client-side.
Refer to Google OAuth Client Library for Java GIT Repository for patch, upgrade or suggested workaround information.