Lucene search

CVE-2024-34354

🗓️ 14 May 2024 15:44:38Reported by GitHub_MType

SaaS template with JWT Token vulnerability, patch required

AI Insights are available for you today

Leverage the power of AI to quickly understand vulnerabilities, impacts, and exploitability

Reporter	Title	Published	Views	Family All 4
Cvelist	CVE-2024-34354 CMSaasStarter: JWT Token Not Verified on Server Session	9 May 202414:51	–	cvelist
Vulnrichment	CVE-2024-34354 CMSaasStarter: JWT Token Not Verified on Server Session	9 May 202414:51	–	vulnrichment
OSV	CVE-2024-34354	14 May 202415:38	–	osv
NVD	CVE-2024-34354	14 May 202415:38	–	nvd

Vulners

Vulnrichment

Node

criticalmoments cmsaasstarterRange<7904d416d2c72ec75f42fbf51e9e64fa74062ee6

[
  {
    "vendor": "CriticalMoments",
    "product": "CMSaasStarter",
    "versions": [
      {
        "version": "< 7904d416d2c72ec75f42fbf51e9e64fa74062ee6",
        "status": "affected"
      }
    ]
  }
]

Source	Link
github	www.github.com/CriticalMoments/CMSaasStarter/security/advisories/GHSA-qgcj-9rxf-rw7q
github	www.github.com/CriticalMoments/CMSaasStarter/commit/7904d416d2c72ec75f42fbf51e9e64fa74062ee6
github	www.github.com/CriticalMoments/CMSaasStarter/pull/65

Transform Your Security Services

Elevate your offerings with Vulners' advanced Vulnerability Intelligence. Contact us for a demo and discover the difference comprehensive, actionable intelligence can make in your security strategy.

Book a live demo

14 May 2024 15:38Current

6.7Medium risk

Vulners AI Score6.7

CVSS36.5

EPSS0.00071

SSVC

CWE-345