Количество 2
Количество 2
CVE-2025-1293
12 месяцев назад
Hermes versions up to 0.4.0 improperly validated the JWT provided when using the AWS ALB authentication mode, potentially allowing for authentication bypass. This vulnerability, CVE-2025-1293, was fixed in Hermes 0.5.0.
CVSS3: 8.2
EPSS: Низкий
GHSA-vxm9-8mfw-vc6g
12 месяцев назад
Hermes improperly validates a JWT
CVSS3: 8.2
EPSS: Низкий
Уязвимостей на страницу
20
Уязвимость | CVSS | EPSS | Опубликовано | |
|---|---|---|---|---|
 | CVE-2025-1293 Hermes versions up to 0.4.0 improperly validated the JWT provided when using the AWS ALB authentication mode, potentially allowing for authentication bypass. This vulnerability, CVE-2025-1293, was fixed in Hermes 0.5.0. | CVSS3: 8.2 | 0% Низкий | 12 месяцев назад |
| GHSA-vxm9-8mfw-vc6g Hermes improperly validates a JWT | CVSS3: 8.2 | 0% Низкий | 12 месяцев назад |
Уязвимостей на страницу
20