CVE-2017-10862
N/A
N/A
Summary
jwt-scala 1.2.2 and earlier fails to verify token signatures correctly which may lead to an attacker being able to pass specially crafted JWT data as a correctly signed token.
Affected Software
| Vendor | Product | Version Range | Status |
|---|---|---|---|
| reallyl IO | jwt-scala | 1.2.2 and earlier | affected |
Weaknesses
- Improper verification of signatures
ADP Enrichment
CVE Program Container
Additional References
References
Feedback
Was this page helpful?
Glad to hear it! Please tell us how we can improve.
Sorry to hear that. Please tell us how we can improve.