Site icon API Security Blog

Authentication Bypass

Victor Test

image
github.com/hashicorp-forge/hermes is vulnerable to Authentication Bypass. The vulnerability is due to improper validation of JWT when using the AWS ALB authentication mode, potentially allowing an authentication bypass…Read More

Exit mobile version