2 matches found
CVE-2022-0931
Rejected reason: Red Hat Product Security does not consider this to be a vulnerability. Upstream has not acknowledged this issue as a security flaw...
CVE-2022-0931
The Red Hat 3scale gateway exposes a JWT verification flaw: it does not properly verify the algorithm claim in the token header, enabling an attacker to craft a signed token with improper claims and bypass security restrictions.