First published: Sun Mar 31 2024(Updated: )
A flaw was found in OpenShift's Telemeter. If certain conditions are in place, an attacker can use a forged token to bypass the issue ("iss") check during JSON web token (JWT) authentication.
Credit: secalert@redhat.com
Affected Software | Affected Version | How to fix |
---|---|---|
=4.0 | ||
=2.0 |
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.