CVE-2017-10862
CVE-2017-10862 affects the jwt-scala library; versions 1.2.2 and earlier fail to verify token signatures correctly due to improper processing of JWT headers. This can allow an attacker to present specially crafted JWT data that is accepted as correctly signed. The issue is documented in sources s...