RSS   Vulnerabilities for 'CJWT'   RSS

2020-03-20
 
CVE-2019-19324

CWE-670
 

 
Xmidt cjwt through 1.0.1 before 2019-11-25 maps unsupported algorithms to alg=none, which sometimes leads to untrusted accidental JWT acceptance.

 


Copyright 2024, cxsecurity.com

 

Back to Top