High Severity Vulnerability Discovered in the JsonWebToken Library | allinfosecnews.com

Jan. 12, 2023, 9:17 a.m. | Mihaela Marian

Heimdal Security Blog heimdalsecurity.com

The open-source JsonWebToken (JWT) library has been confirmed to be affected by a high-severity security flaw that could lead to remote code execution. While investigating the popular open-source project, Unit 42 researchers discovered a new vulnerability, tracked as CVE-2022-23529.This flaw has been rated as high severity with a CVSS score of 7.6, and according to the […]

The post High Severity Vulnerability Discovered in the JsonWebToken Library appeared first on Heimdal Security Blog.

code code execution cve cve-2022-23529 cvss cybersecurity news flaw heimdal security high jsonwebtoken jwt library popular project remote code remote code execution researchers score security severity unit 42 vulnerability

More from heimdalsecurity.com / Heimdal Security Blog

Patch Now! CrushFTP Zero-day Lets Attackers Download System Files 1 day, 22 hours ago | heimdalsecurity.com

attackers critical crushftp customers +22

MITRE Breached – Hackers Chained 2 Ivanti Zero-days to Compromise VPN 2 days, 1 hour ago | heimdalsecurity.com

attack authentication authentication bypass breach +30

A System Administrator’s Challenges in Patch Management 2 days, 2 hours ago | heimdalsecurity.com

administrator alex benefits challenges +13

Free and Downloadable Account Management Policy Template 3 days, 5 hours ago | heimdalsecurity.com

account accounts business data +16

Atera vs. ConnectWise: Head-to-Head Comparison (And Alternative) 3 days, 22 hours ago | heimdalsecurity.com

article atera balance complexity +11

NinjaOne vs. Atera: A Deep Comparison Between the Solutions 1 week ago | heimdalsecurity.com

atera business critical customers +22

Deceptive Google Ads Mimic IP Scanner Software to Push Backdoor 1 week ago | heimdalsecurity.com

ads backdoor campaign cybersecurity +16

CrowdStrike vs. SentinelOne: Which One Is Better For Endpoint Security? 1 week ago | heimdalsecurity.com

business can crowdstrike cybersecurity +13

Surge in Botnets Exploiting CVE-2023-1389 to Infect TP-Link Archer Routers 1 week, 1 day ago | heimdalsecurity.com

bleeping computer botnet botnets command +24

SOC 2 Manager, Audit and Certification

@ Deloitte | US and CA Multiple Locations

View on infosec-jobs.com

IT Security Manager

@ Teltonika | Vilnius/Kaunas, VL, LT

View on infosec-jobs.com

Security Officer - Part Time - Harrah's Gulf Coast

@ Caesars Entertainment | Biloxi, MS, United States

View on infosec-jobs.com

DevSecOps Full-stack Developer

@ Peraton | Fort Gordon, GA, United States

View on infosec-jobs.com

Cybersecurity Cooperation Lead

@ Peraton | Stuttgart, AE, United States

View on infosec-jobs.com

Cybersecurity Engineer - Malware & Forensics

@ ManTech | 201DU - Customer Site,Herndon, VA

View on infosec-jobs.com