Описание
Insufficient Data Verification in io.really:jwt-scala
jwt-scala 1.2.2 and earlier fails to verify token signatures correctly which may lead to an attacker being able to pass specially crafted JWT data as a correctly signed token.
Пакеты
Наименование
io.really:jwt-scala
maven
Затронутые версииВерсия исправления
<= 1.2.2
Отсутствует
Связанные уязвимости
CVSS3: 5.3
nvd
больше 8 лет назад
jwt-scala 1.2.2 and earlier fails to verify token signatures correctly which may lead to an attacker being able to pass specially crafted JWT data as a correctly signed token.