bubble fireworks is an open source java package relating to Spring Framework. In bubble fireworks before version 2021.BUILD-SNAPSHOT there is a vulnerability in which the package did not properly verify the signature of JSON Web Tokens. This allows to forgery of valid JWTs.
Metrics
Affected Vendors & Products
References
History
No history.
MITRE
Status: PUBLISHED
Assigner: GitHub_M
Published: 2021-06-04T20:05:12
Updated: 2024-08-03T22:11:05.453Z
Reserved: 2021-03-30T00:00:00
Link: CVE-2021-29500
Vulnrichment
No data.
NVD
Status : Modified
Published: 2021-06-04T20:15:07.763
Modified: 2024-11-21T06:01:15.387
Link: CVE-2021-29500
Redhat
No data.