EPSS
Percentile
70.0%
F21 JWT is vulnerable to signature verification bypasses. A malicious user can pass a malicious token to the application to bypass token signature verification.
jvn.jp/en/jp/JVN06120222/index.html
jvndb.jvn.jp/en/contents/2015/JVNDB-2015-000073.html
jvndb.jvn.jp/jvndb/JVNDB-2015-000073
www.securityfocus.com/bid/75021
github.com/F21/jwt/commit/a327cf9052df8f9f97728ca0b5fa78a8231b79b6