CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Networknt: Security Vulnerabilities

CVE-2023-31580

light-oauth2 before version 2.1.27 obtains the public key without any verification. This could allow attackers to authenticate to the application with a crafted JWT token.

CVSS Score

5.9

EPSS Score

0.002

Published

2023-10-25

Page 1

Vulnerabilities

Vulnerable Software

Networknt: Security Vulnerabilities

Products

Pricing

Contact Us