0.001 Low
EPSS
Percentile
39.7%
Auth0 Passport-SharePoint before 0.4.0 does not validate the JWT signature of an Access Token before processing. This allows attackers to forge tokens and bypass authentication and authorization mechanisms.
auth0.com/docs/security/bulletins/cve-2019-13483