EPSS
Percentile
9.5%
microsoft.aspnetcore.authentication.jwtbearer is vulnerable to information disclosure. The vulnerability exists due to an insecure JWT token that is logged if it cannot be parsed.
github.com/advisories/GHSA-q7cg-43mg-qp69
github.com/dotnet/announcements/issues/195
portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2021-34532