CVE-2021-47663

High CVSS: 8.1

Due to improper JSON Web Tokens implementation an unauthenticated remote attacker can guess a valid session ID and therefore impersonate a user to gain full access.

Vendor

Product

CWE

CWE-613

Yayın Tarihi

2025-04-24 10:15:16

Güncelleme

2025-04-29 13:52:47

Source Identifier

info@cert.vde.com

KEV Date Added

Kategoriler

CWE-613 HIGH 2025

Referanslar

https://www.sciencedirect.com/science/article/pii/S2351978921001657