Web: https://securityboulevard.com/2022/04/vulnerability-in-java-could-allow-attackers-to-forge-credentials/

April 26, 2022, 2:06 a.m. | brooke.crothers

Security Boulevard securityboulevard.com

Vulnerability in Java Could Allow Attackers to Forge Credentials


Mon, 04/25/2022 - 19:06

Java version 15 and above affected

Recent releases of Java could make it easier for an attacker to forge SSL certificates and signed JSON Web Tokens (JWTs), among other vulnerabilities.

Neil Madden, a Security Architect at ForgeRock who discovered the vulnerability, said in a blog post that “you should stop what you are doing” and immediately install the fixes in the Oracle April 2022 …

attackers credentials forge java vulnerability

More from securityboulevard.com / Security Boulevard

Field Security Specialist (GitHub Advanced Security Pre-Sales Engineer)

@ GitHub | Remote - US East

Cyber Threat Intelligence (CTI) Analyst

@ XOR Security | Alexandria, VA

Senior Manual QA (Cyber Protect)

@ Acronis | Budapest, Hungary

Security Operations Engineer

@ Cloudflare, Inc. | Lisbon, Portugal

Senior Security Consultant

@ Charterhouse | Peterborough, England, United Kingdom

Enterprise Sales Executive (Missouri)

@ Datadog | Missouri, USA, Remote

iCAM - Cyber/Network Security Background**

@ SonicWall | Bengaluru, Karnataka, India

Territory Account Manager - Cyber Security Background*

@ SonicWall | Melbourne, Victoria, Australia

Cybersecurity and Supply Chain Risk Manager

@ Avint | Washington, District of Columbia, United States - Remote

Implementation Consultant

@ Snyk | Australia, Japan, or Singapore

Information Systems Security Engineer (ISSE)

@ Novetta | Columbia, Maryland

Vulnerability Management Engineer (Splunk)

@ Aperia | Dallas, Texas, United States - Remote