0.001 Low
EPSS
Percentile
30.8%
jwt-scala 1.2.2 and earlier fails to verify token signatures correctly which may lead to an attacker being able to pass specially crafted JWT data as a correctly signed token.
github.com/reallylabs/jwt-scala
jvn.jp/en/vu/JVNVU90916766/index.html
nvd.nist.gov/vuln/detail/CVE-2017-10862