CVE-2026-34950 | nearform fast-jwt up to 6.1.0 JSON Web Token fast-jwt/src/crypto.js risky encryption (GHSA-mvf2-f6gm-w987)

Inserito da Angelo Barbosa | Apr 6, 2026 | CVE

A vulnerability was found in nearform fast-jwt up to 6.1.0 and classified as problematic. The affected element is an unknown function of the file fast-jwt/src/crypto.js of the component JSON Web Token Handler. The manipulation results in risky cryptographic algorithm.

This vulnerability was named CVE-2026-34950. The attack may be performed from remote. There is no available exploit.

CVE-2026-34950 | nearform fast-jwt up to 6.1.0 JSON Web Token fast-jwt/src/crypto.js risky encryption (GHSA-mvf2-f6gm-w987)

Post correlati

CVE-2025-46586 | Huawei HarmonyOS 5.0.0 Contacts Module access control

CVE-2025-59258 | Microsoft

CVE-2024-0385 | Categorify Plugin up to 1.0.7.4 on WordPress categorifyAjaxAddCategory authorization

CVE-2024-45050 | Lif-Platforms New-Ringer-Server up to 1.3.0 authorization