6.5 Medium
AI Score
Confidence
Low
0.003 Low
EPSS
Percentile
69.2%
NAMSHI | JOSE 5.0.0 and earlier allows remote attackers to bypass signature verification via crafted tokens in a JSON Web Tokens (JWT) header.
jvn.jp/en/jp/JVN25336719/index.html
jvndb.jvn.jp/jvndb/JVNDB-2015-000090
www.securityfocus.com/bid/75423