CVE-2021-35342

Posted on by admin

CVE-2021-35342

The useradm service 1.14.0 (in Northern.tech Mender Enterprise 2.7.x before 2.7.1) and 1.13.0 (in Northern.tech Mender Enterprise 2.6.x before 2.6.1) allows users to access the system with their JWT token after logout, because of missing invalidation (if the JWT verification cache is enabled).

Source: CVE-2021-35342

답글 남기기

이메일 주소는 공개되지 않습니다. 필수 필드는 *로 표시됩니다