Lucene search

Improper JWT Signature Validation in SAP Security Services Library

🗓️ 12 Dec 2023 03:45:31Reported by GoogleType

osv🔗 osv.dev👁 18 Views

Improper JWT Signature Validation in SAP Security Services Librar

Reporter	Title	Published	Views	Family All 8
Cvelist	CVE-2023-50422 Escalation of Privileges in SAP BTP Security Services Integration Library ([Java] cloud-security-services-integration-library)	12 Dec 202301:31	–	cvelist
Prion	Privilege escalation	12 Dec 202302:15	–	prion
OSV	Improper JWT Signature Validation in SAP Security Services Library	13 Dec 202313:33	–	osv
OSV	CVE-2023-50422	12 Dec 202302:15	–	osv
NVD	CVE-2023-50422	12 Dec 202302:15	–	nvd
CVE	CVE-2023-50422	12 Dec 202302:15	–	cve
Veracode	Privilege Escalation	14 Dec 202303:36	–	veracode
Github Security Blog	Improper JWT Signature Validation in SAP Security Services Library	13 Dec 202313:33	–	github

Source	Link
github	www.github.com/SAP/cloud-security-services-integration-library/security/advisories/GHSA-59c9-pxq8-9c73
nvd	www.nvd.nist.gov/vuln/detail/CVE-2023-50422
blogs	www.blogs.sap.com/2023/12/12/unveiling-critical-security-updates-sap-btp-security-note-3411067
github	www.github.com/SAP/cloud-security-services-integration-library
me	www.me.sap.com/notes/3411067
me	www.me.sap.com/notes/3413475
mvnrepository	www.mvnrepository.com/artifact/com.sap.cloud.security.xsuaa/spring-xsuaa
mvnrepository	www.mvnrepository.com/artifact/com.sap.cloud.security/java-security
mvnrepository	www.mvnrepository.com/artifact/com.sap.cloud.security/spring-security
sap	www.sap.com/documents/2022/02/fa865ea4-167e-0010-bca6-c68f7e60039b.html

Transform Your Security Services

Elevate your offerings with Vulners' advanced Vulnerability Intelligence. Contact us for a demo and discover the difference comprehensive, actionable intelligence can make in your security strategy.

Book a live demo

12 Dec 2023 03:31Current

7.3High risk

Vulners AI Score7.3

CVSS39.8

EPSS0.00337