Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
redhatcveRedhat.comRH:CVE-2022-0931
HistoryFeb 09, 2024 - 2:59 a.m.

CVE-2022-0931

2024-02-0902:59:05
redhat.com
access.redhat.com
5
3scale
gateway
jwt
algorithm
verification
flaw
security
bypass

6.5 Medium

AI Score

Confidence

Low

JSON

3scale’s gateway usage of JWT does not properly handle verification of algorithm claims in the token header. An attacker could use this flaw to create a signed token with improper claims and thus to bypass security restrictions for the user.

Related

prion 1
cve 1
prion
prion
Security feature bypass
2024-02-08 23:15:00
cve
cve
CVE-2022-0931
2024-02-08 23:15:09

6.5 Medium

AI Score

Confidence

Low

JSON
Related for RH:CVE-2022-0931
prion1cve1