Flaw in jsonwebtoken package allows remote code executio
Reporter | Title | Published | Views | Family All 25 |
---|---|---|---|---|
OSV | jsonwebtoken has insecure input validation in jwt.verify function | 22 Dec 202203:31 | – | osv |
Tenable Nessus | Auth0 JsonWebtoken < 9.0.0 Arbitrary File Write (deprecated) | 13 Jan 202300:00 | – | nessus |
NVD | CVE-2022-23529 | 21 Dec 202221:15 | – | nvd |
Veracode | Improper Input Validation | 23 Dec 202205:35 | – | veracode |
Cvelist | CVE-2022-23529 | 1 Jan 197600:00 | – | cvelist |
GithubExploit | Exploit for CVE-2022-23529 | 16 Jan 202302:35 | – | githubexploit |
GithubExploit | Exploit for CVE-2022-23529 | 16 Jan 202302:35 | – | githubexploit |
Hive Pro Threat Advisories | New Vulnerability Found in the JsonWebToken Open-Source Project | 10 Jan 202312:11 | – | hivepro |
The Hacker News | Severe Security Flaw Found in "jsonwebtoken" Library Used by 22,000+ Projects | 10 Jan 202308:54 | – | thn |
Github Security Blog | jsonwebtoken has insecure input validation in jwt.verify function | 22 Dec 202203:31 | – | github |
Transform Your Security Services
Elevate your offerings with Vulners' advanced Vulnerability Intelligence. Contact us for a demo and discover the difference comprehensive, actionable intelligence can make in your security strategy.
Book a live demo