QwikSec

Security Database

CVE

CWE

Training

CVE Database
/

CVE-2019-1010161

Back to search

CVE-2019-1010161

Published: Jul 25, 2019

Modified: Aug 5, 2024

PUBLISHED

Description

perl-CRYPT-JWT 0.022 and earlier is affected by: Incorrect Access Control. The impact is: bypass authentication. The component is: JWT.pm for JWT security token, line 614 in _decode_jws(). The attack vector is: network connectivity(crafting user-controlled input to bypass authentication). The fixed version is: 0.023.

VendorProductVersions

perl-CRYPT-JWT

perl-CRYPT-JWT

affected
0.022 and earlier [fixed: 0.023]

References

Security Training

Train your team to recognize and prevent security threats with our comprehensive security awareness program.

Start Training

Vulnerability Scanning

Discover vulnerabilities in your applications and infrastructure before attackers do.

Scan Now