github.com/distribution/distribution/v3 is vulnerable to Improper Authentication. The vulnerability is due to Improper Authentication due to inadequate verification of JSON Web Keys (JWK) in JSON Web Tokens (JWT), allowing an attacker to inject an untrusted signing key when token authentication is…Read More