Lucene search

K
veracodeVeracode Vulnerability DatabaseVERACODE:31830
HistoryAug 26, 2021 - 5:02 a.m.

Information Disclosure

2021-08-2605:02:39
Veracode Vulnerability Database
sca.analysiscenter.veracode.com
26
information disclosure
jwt token
insecure

EPSS

0

Percentile

9.5%

microsoft.aspnetcore.authentication.jwtbearer is vulnerable to information disclosure. The vulnerability exists due to an insecure JWT token that is logged if it cannot be parsed.