First published: Mon Nov 20 2023(Updated: )
|Affected Software||Affected Version||How to fix|
The vulnerability ID for this issue is GHSA-c2ff-88x2-x9pg.
The severity of GHSA-c2ff-88x2-x9pg is medium with a severity value of 5.9.
The affected software for GHSA-c2ff-88x2-x9pg is the fast-jwt library with a version up to 3.3.2.
GHSA-c2ff-88x2-x9pg allows an attacker to exploit JWT algorithm confusion for certain types of public keys.
To fix GHSA-c2ff-88x2-x9pg, update the fast-jwt library to version 3.3.2 or higher.