CVE-2024-5037 Openshift/telemeter: iss check during jwt authentication can be bypassed

A flaw was found in OpenShift's Telemeter. If certain conditions are in place, an attacker can use a forged token to bypass the issue ("iss") check during JSON web token (JWT).. ...

Continue Reading

June 05, 2024

CVE-2024-5037

A flaw was found in OpenShift's Telemeter. If certain conditions are in place, an attacker can use a forged token to bypass the issue ("iss") check during JSON web token (JWT).. ...

Continue Reading

June 05, 2024

CVE-2024-5037

A flaw was found in OpenShift's Telemeter. If certain conditions are in place, an attacker can use a forged token to bypass the issue ("iss") check during JSON web token (JWT).. ...

Continue Reading

June 05, 2024

CVE-2024-5483

...Read More ...

Continue Reading

June 05, 2024

Security Bulletin: Vulnerability in jjwt may affect IBM Business Automation Workflow – CVE-2024-31033

Summary IBM Business Automation Workflow packages a vulnerable copy of jjwt. Vulnerability Details ** CVEID: CVE-2024-31033 DESCRIPTION: **An unspecified error with ignoring certain characters in jwt ...

Continue Reading

June 05, 2024

Consul JWT Auth in L7 Intentions Allow for Mismatched Service Identity and JWT Providers in github.com/hashicorp/consul

Consul JWT Auth in L7 Intentions Allow for Mismatched Service Identity and JWT Providers in...Read More ...

Continue Reading

June 04, 2024

Drupal REST & JSON API Authentication – Moderately critical – Access bypass – SA-CONTRIB-2024-022

Drupal REST & JSON API Authentication module restricts and secures unauthorized access to your Drupal site APIs using different authentication methods including Basic Authentication , API Key ...

Continue Reading

May 31, 2024

CVE-2023-5752 vulnerabilities

Vulnerabilities for packages:...Read More ...

Continue Reading

May 29, 2024

1 34 35 36 37 38 187

Back to Main
Subscribe for the latest news: