3 matches found
CVE-2023-45669
WebAuthn4J Spring Security provides Web Authentication specification support for Spring applications. Affected versions are subject to improper signature counter value handling. A flaw was found in webauthn4j-spring-security-core. When an authneticator returns an incremented signature counter val...
CVE-2023-45669
WebAuthn4J Spring Security provides Web Authentication specification support for Spring applications. Affected versions are subject to improper signature counter value handling. A flaw was found in webauthn4j-spring-security-core. When an authneticator returns an incremented signature counter val...
CVE-2023-45669
CVE-2023-45669 affects WebAuthn4J Spring Security via the webauthn4j-spring-security-core component. The bug arises from improper persistence of an incremented signature counter returned by the authenticator, causing cloned authenticators to evade detection. Reported impact: an attacker could abu...