Описание
A user can reverse engineer the JWT token (JSON Web Token) used in authentication for Manager and API access, forging a valid NeuVector Token to perform malicious activity in NeuVector. This can lead to an RCE.
EPSS
Процентиль: 38%
0.00166
Низкий
Дефекты
CWE-1270
Связанные уязвимости
github
больше 2 лет назад
JWT token compromise can allow malicious actions including Remote Code Execution (RCE)
EPSS
Процентиль: 38%
0.00166
Низкий
Дефекты
CWE-1270