2 matches found
CVE-2023-39846
CVE-2023-39846 affects Konga v0.14.9 and enables authentication bypass via a crafted JWT token. The CVSSv3.1 base score is 9.8 (CRITICAL) with Network attack vector, low complexity, and no privileges/user interaction required. Documented impact is total compromise of confidentiality, integrity, a...
CVE-2023-39846
An issue in Konga v0.14.9 allows attackers to bypass authentication via a crafted JWT token...