CVE-2019-13483

Auth0 Passport-SharePoint before 0.4.0 does not validate the JWT signature of an Access Token before processing. This allows attackers to forge tokens and bypass authentication and authorization mechanisms.
References
Configurations

Configuration 1

cpe:2.3:a:auth0:passport-sharepoint:*:*:*:*:*:*:*:*

Information

Published : 2019-07-25 08:15

Updated : 2019-07-31 04:23


NVD link : CVE-2019-13483

Mitre link : CVE-2019-13483

Products Affected
No products.
CWE