Vulnerabilities

CVE-2021-29500

by Fred · 04/06/2021

bubble fireworks is an open source java package relating to Spring Framework. In bubble fireworks before version 2021.BUILD-SNAPSHOT there is a vulnerability in which the package did not properly verify the signature of JSON Web Tokens. This allows to forgery of valid JWTs.

Date published : 2021-06-04

https://github.com/fxbin/bubble-fireworks/security/advisories/GHSA-hj36-84cp-29pr

Similar

Tags: Cybersecurity Alert