January 29, 2023

popular open source (opens in a new tab) A high-severity vulnerability exists in the JsonWebToken project that could allow threat actors to remotely execute malicious code on affected endpoints.

A report from Unit 42, Palo Alto Networks’ cybersecurity arm, outlines how the flaw allows servers to validate requests for maliciously crafted JSON Web Tokens (JWTs), granting attackers remote code execution (RCE) capabilities.

Source link

Leave a Reply

Your email address will not be published. Required fields are marked *