6 matches found
EUVD-2022-3429
Malicious code in bioql PyPI...
GHSA-9PXM-8G95-Q5XR Insufficient Data Verification in io.really:jwt-scala
jwt-scala 1.2.2 and earlier fails to verify token signatures correctly which may lead to an attacker being able to pass specially crafted JWT data as a correctly signed token...
Insufficient Data Verification in io.really:jwt-scala
jwt-scala 1.2.2 and earlier fails to verify token signatures correctly which may lead to an attacker being able to pass specially crafted JWT data as a correctly signed token...
CVE-2017-10862
CVE-2017-10862 affects the jwt-scala library; versions 1.2.2 and earlier fail to verify token signatures correctly due to improper processing of JWT headers. This can allow an attacker to present specially crafted JWT data that is accepted as correctly signed. The issue is documented in sources s...
CVE-2017-10862
jwt-scala 1.2.2 and earlier fails to verify token signatures correctly which may lead to an attacker being able to pass specially crafted JWT data as a correctly signed token...
jwt-scala fails to verify token signatures
Overview jwt-scala contains a vulnerability where it fails to verify token signatures correctly. jwt-scala is a Scala library to handle JSON Web Token JWT. jwt-scala contains a vulnerability where it fails to verify token signatures correctly due to improper processing of JWT headers. Toshiharu...