An attacker submitting the JWT token can choose the used signing algorithm (CVE-2022-29217)Read More ...
Continue ReadingJune 30, 2022
[ lacked sufficient input validation i.e., allowing CRLF charact ...
Continue ReadingJune 27, 2022
### Impact Jsrsasign supports JWS(JSON Web Signatures) and JWT(JSON Web Token) validation. However JWS or JWT signature with non Base64URL encoding special characters or number escaped characters may ...
Continue ReadingJune 25, 2022
### Impact Jsrsasign supports JWS(JSON Web Signatures) and JWT(JSON Web Token) validation. However JWS or JWT signature with non Base64URL encoding special characters or number escaped characters may ...
Continue ReadingJune 25, 2022
Argo CD is a declarative, GitOps continuous delivery tool for Kubernetes. A critical vulnerability has been discovered in Argo CD starting with version 1.4.0 and prior to versions 2.1.15, 2.2.9, and 2 ...
Continue ReadingJune 23, 2022
Back to Main