CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

5 matches found

RedhatCVE•added 2025/05/22 9:16 a.m.•3 views

CVE-2019-19324

Xmidt cjwt through 1.0.1 before 2019-11-25 maps unsupported algorithms to alg=none, which sometimes leads to untrusted accidental JWT acceptance...

7.5CVSS6.9AI score0.00344EPSS

Exploits0References1

NVD•added 2020/03/20 6:15 p.m.•8 views

CVE-2019-19324

Xmidt cjwt through 1.0.1 before 2019-11-25 maps unsupported algorithms to alg=none, which sometimes leads to untrusted accidental JWT acceptance...

7.5CVSS7.5AI score0.00344EPSS

Exploits0References2

OSV•added 2020/03/20 6:15 p.m.•8 views

CVE-2019-19324

Xmidt cjwt through 1.0.1 before 2019-11-25 maps unsupported algorithms to alg=none, which sometimes leads to untrusted accidental JWT acceptance...

7.5CVSS6.8AI score

Exploits0References2

CVE•added 2020/03/20 5:26 p.m.•80 views

CVE-2019-19324

Xmidt cjwt (C library) before 2019-11-25 and version 1.0.1 and earlier maps unsupported JWT algorithms to alg=none, which can lead to untrusted accidental JWT acceptance. Affected component: Xmidt cjwt; root cause: permissive/incorrect handling of algorithm values; impact: potential for accepting...

7.5CVSS7.5AI score0.00344EPSS

Exploits0References2Affected Software1