Control ID IDSecure 4.7.26.0 and prior uses a hardcoded cryptographic key in order to sign and verify JWT session tokens, allowing malicious users to sign arbitrary session tokens and bypass authentication.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
assaabloy control id idsecure |