QID 996008
Date Published: 2023-11-21
QID 996008: NodeJs (Npm) Security Update for json-web-token (GHSA-4xw9-cx39-r355)
The json-web-token library is vulnerable to a JWT algorithm confusion attack.
Successful exploitation of this vulnerability could lead to a security breach or could affect integrity, availability, and confidentiality.
Solution
Refer to Github security advisory GHSA-4xw9-cx39-r355 for updates and patch information.
Vendor References
- GHSA-4xw9-cx39-r355 -
github.com/advisories/GHSA-4xw9-cx39-r355
CVEs related to QID 996008
Software Advisories
| Advisory ID | Software | Component | Link |
|---|