2.0.1 - Security Fix #96
codemation
announced in
Announcements
Replies: 0 comments
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
-
What's Changed
Disclosure date
2023-03-07T18:48:04.077Z
Title
Vulnerable python_jwt dependecy version used, leading to CVE-2022-39227
Severity
CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:C/C:H/I:H/A:N = Critical (10)
Vulnerability Type
Authentication Bypass by Spoofing
Thanks to @notnci for locating & @psmoros for reporting.
Full Changelog: 2.0.0...2.0.1
This discussion was created from the release 2.0.1 - Security Fix.
Beta Was this translation helpful? Give feedback.
All reactions