CVE-2024-33531 | cdbattags lua-resty-jwt 0.2.3 Enc Header improper authentication

Posted by Angelo Barbosa | Apr 24, 2024 | CVE

A vulnerability was found in cdbattags lua-resty-jwt 0.2.3. It has been classified as critical. This affects an unknown part of the component Enc Header Handler. The manipulation with the input A256GCM leads to improper authentication.

This vulnerability is uniquely identified as CVE-2024-33531. It is possible to initiate the attack remotely. There is no exploit available.

CVE-2024-33531 | cdbattags lua-resty-jwt 0.2.3 Enc Header improper authentication

Related Posts

CVE-2022-48695 | Linux Kernel up to 5.19.8 mpt3sas lib/refcount.c use after free

CVE-2024-33599 | GNU C Library Netgroup Cache stack-based overflow

CVE-2024-6548 | Add Admin JavaScript Plugin up to 2.0 on WordPress information disclosure

CVE-2024-34490 | Maxima up to 5.47.0 /tmp temp file (51704c)