European Chemicals Agency IUCLID 6.x before 6.27.6 allows authentication bypass because a weak hard-coded secret is used for JWT signing. The affected versions are 5.15.0 through 6.27.5.
Metrics
Affected Vendors & Products
References
History
No history.
MITRE
Status: PUBLISHED
Assigner: mitre
Published: 2023-05-02T00:00:00
Updated: 2024-08-02T11:39:06.570Z
Reserved: 2023-02-20T00:00:00
Link: CVE-2023-26089
Vulnrichment
No data.
NVD
Status : Analyzed
Published: 2023-05-02T20:15:10.707
Modified: 2023-05-10T15:27:30.670
Link: CVE-2023-26089
Redhat
No data.