5.2 Medium
AI Score
Confidence
High
0.001 Low
EPSS
Percentile
30.8%
jwt-scala 1.2.2 and earlier fails to verify token signatures correctly which may lead to an attacker being able to pass specially crafted JWT data as a correctly signed token.
github.com/reallylabs/jwt-scala
jvn.jp/en/vu/JVNVU90916766/index.html