JSON Web Token - CVE CyberSecurity Database News

Feb 11, 2025 JSON Web Token

CVE-2025-24976: Docker Distribution Vulnerability in Token Authentication

Docker Distribution is a valuable toolkit that assists developers in packing, shipping, storing, and delivering containerized content. However, a serious security vulnerability was recently identified

Jan 31, 2025 Exploit JSON Web Token Java

CVE-2024-57432 - Insecure Permissions in macrozheng mall-tiny 1..1: Hardcoded JWT Signing Keys and User Information Exposure

Macrozheng's mall-tiny 1..1, a popular open source e-commerce platform, is found to suffer from insecure permissions due to hardcoded JWT (JSON Web

Oct 16, 2024 RCE API Exploit JSON Web Token

CVE-2023-32188 - NeuVector JSON Web Token (JWT) Authentication Bypass Vulnerability Leads to Remote Code Execution (RCE)

The cybersecurity landscape is constantly evolving as new vulnerabilities and exploits are discovered. In this in-depth look, we will discuss CVE-2023-32188, a critical security vulnerability

Jun 12, 2024 JSON Web Token hashicorp vault enterprise

CVE-2024-5798: Understanding the JSON Web Token Validation Vulnerability in Vault and Vault Enterprise

Vault and Vault Enterprise, the widely-used secret management solutions, are essential tools for securing digital secrets across an organization. However, a recent vulnerability (CVE-2024-5798) impacted

Jun 11, 2024 Exploit JSON Web Token veeam recovery orchestrator

CVE-2024-29855: Hard-coded JWT Secret Allows Authentication Bypass in Veeam Recovery Orchestrator

A critical vulnerability, identified as CVE-2024-29855, has been discovered in the Veeam Recovery Orchestrator. This security flaw allows a potential attacker to bypass authentication and