2.0.1 - Security Fix #96
codemation
announced in
Announcements
Replies: 0 comments
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
Uh oh!
There was an error while loading. Please reload this page.
-
What's Changed
Disclosure date
2023-03-07T18:48:04.077Z
Title
Vulnerable python_jwt dependecy version used, leading to CVE-2022-39227
Severity
CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:C/C:H/I:H/A:N = Critical (10)
Vulnerability Type
Authentication Bypass by Spoofing
Thanks to @notnci for locating & @psmoros for reporting.
Full Changelog: 2.0.0...2.0.1
This discussion was created from the release 2.0.1 - Security Fix.
Beta Was this translation helpful? Give feedback.
All reactions