all InfoSec news logo
all InfoSec news - Your InfoSec news aggregator
Log in Sign up
all InfoSec news

If you don’t love me now: JsonWebToken breaks the software supply chain (again)

Add to bookmarks
Jan. 11, 2023, 6:04 p.m. | Richi Jennings

Security Boulevard securityboulevard.com





The JsonWebToken library has a serious flaw, which could lead to remote code execution (RCE). That’s potentially a huge problem, because it’s used all over the place.


The post If you don’t love me now: JsonWebToken breaks the software supply chain (again) appeared first on Security Boulevard.

code code execution don flaw jsonwebtoken library love problem rce remote code remote code execution secure software blogwatch security security boulevard serious software software supply chain software supply chain security supply supply chain

Visit resource

More from securityboulevard.com / Security Boulevard

5 Ways to Step Up Your AD Hygiene with Silverfort 2 hours ago | securityboulevard.com
access active directory administrators applications +14
Back to Security Basics 3 hours ago | securityboulevard.com
back basics businesses computer +22
Miggo Unfurls Real-Time Application Detection and Response Platform 11 hours ago | securityboulevard.com
ai and machine learning in security and response api security application +21
Test & Evaluation Techniques for Meeting M-24-10 Mandates to Manage Generative AI Risk 13 hours ago | securityboulevard.com
ai risk ai risk management ai risks blog +24
From Caesar to Cyberspace: The Growing Menace of Obfuscated Phishing Scams 13 hours ago | securityboulevard.com
attackers caesar cto corner cyberattacks +17
HHS Strengthens Privacy of Reproductive Health Care Data 13 hours ago | securityboulevard.com
administration biden biden administration care +37
High-Risk Customers: How to Identify & Mitigate Risky Clients 14 hours ago | securityboulevard.com
amp business can clients +11
Bridging the Skills Gap in Data Centers with DCIM Software 14 hours ago | securityboulevard.com
center centers challenge critical +27
Who Are APT29? 14 hours ago | securityboulevard.com
apt29 hacker hacker group hacking +8

Jobs in InfoSec / Cybersecurity

Post a job on infosec-jobs.com Find talent on infosec-jobs.com

SOC 2 Manager, Audit and Certification

@ Deloitte | US and CA Multiple Locations
View on infosec-jobs.com

Security Operations Analyst

@ Astranis | San Francisco
View on infosec-jobs.com

Manager - Business continuity Security and Safety.Risk and Compliance

@ MTN | Benin
View on infosec-jobs.com

Cyber Analyst, Digital Forensics Incident Response

@ At-Bay | Canada
View on infosec-jobs.com

Technical Product Manager, AppSec and DevSecOps

@ Penn Interactive | Philadelphia
View on infosec-jobs.com

Experienced Cloud Security Engineer (m/f/d) - Cybersecurity

@ MediaMarktSaturn | Barcelona, ES, 8003
View on infosec-jobs.com
View more jobs