A vulnerability was found in evershop up to 1.0.0-rc.7. It has been rated as problematic. This issue affects some unknown processing of the component JSON Web Token Handler. The manipulation leads to use of hard-coded cryptographic key
.

The identification of this vulnerability is CVE-2023-46943. The attack needs to be initiated within the local network. There is no exploit available.

It is recommended to upgrade the affected component.