You signed in with another tab or window. Reload to refresh your session.You signed out in another tab or window. Reload to refresh your session.You switched accounts on another tab or window. Reload to refresh your session.Dismiss alert
CVE-2019-17195: Connect2id Nimbus JOSE+JWT before v7.9 can throw various uncaught exceptions while parsing a JWT, which could result in an application crash (potential information disclosure) or a potential authentication bypass.
Dependabot already added PR #483 to upgrade develop branch to Nimbus JOSE+JWT 9.1.2, but I'm not sure if that one works with the 2.x branch as well.
The text was updated successfully, but these errors were encountered:
CVE-2019-17195:
Connect2id Nimbus JOSE+JWT before v7.9 can throw various uncaught exceptions while parsing a JWT, which could result in an application crash (potential information disclosure) or a potential authentication bypass.Dependabot already added PR #483 to upgrade develop branch to Nimbus JOSE+JWT 9.1.2, but I'm not sure if that one works with the 2.x branch as well.
The text was updated successfully, but these errors were encountered: