Security Advisory

CVE-2021-29500

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2021-06-04 20:05:12

Last updated 2024-08-03 22:11:05

Assigner GitHub_M

State PUBLISHED

Description

bubble fireworks is an open source java package relating to Spring Framework. In bubble fireworks before version 2021.BUILD-SNAPSHOT there is a vulnerability in which the package did not properly verify the signature of JSON Web Tokens. This allows to forgery of valid JWTs.

← Browse all CVEs View on cve.org ↗