Wednesday, January 11, 2023

Severe Security Flaw Found in "jsonwebtoken" Library Used by 22,000+ Projects

A high-severity security flaw has been disclosed in the open source jsonwebtoken (JWT) library that, if successfully exploited, could lead to remote code execution on a target server. "By exploiting this vulnerability, attackers could achieve remote code execution (RCE) on a server verifying a maliciously crafted JSON web token (JWT) request," Palo Alto Networks Unit 42 researcher Artur Oleyarsh
http://dlvr.it/Sghv82
-

No comments:

Post a Comment

Subscribe to: Post Comments (Atom)

Cisco firewalls targeted in sophisticated nation-state espionage hack - SC Media

Cisco firewalls targeted in sophisticated nation-state espionage hack  SC Media http://dlvr.it/T610qK