AVG-2797 log
Package | python-jwcrypto |
Status | Fixed |
Severity | Medium |
Type | authentication bypass |
Affected | 1.3.1-1 |
Fixed | 1.4.0-1 |
Current |
1.5.6-3 [extra-testing] 1.5.6-2 [extra] |
Ticket | None |
Created | Wed Sep 14 12:09:56 2022 |
Issue | Severity | Remote | Type | Description |
---|---|---|---|---|
CVE-2022-3102 | Medium | Yes | Authentication bypass | The JWT code can auto-detect the type of token being provided, and this can lead the application to incorrect conclusions about the trustworthiness of the... |