Hardcoded JWT Secret in AgileConfig <1.6.8 Server allows remote attackers to use the generated JWT token to gain administrator access.
Metrics
Affected Vendors & Products
References
Link | Providers |
---|---|
https://github.com/dotnetcore/AgileConfig/issues/91 |
History
No history.
MITRE
Status: PUBLISHED
Assigner: mitre
Published: 2022-08-18T22:17:40
Updated: 2024-08-03T09:36:44.403Z
Reserved: 2022-07-11T00:00:00
Link: CVE-2022-35540
Vulnrichment
No data.
NVD
Status : Analyzed
Published: 2022-08-18T23:15:08.293
Modified: 2022-08-19T14:17:11.357
Link: CVE-2022-35540
Redhat
No data.