blob: 5aa1f63bab13232d38b8db197eda673951b4d5e0 [file] [log] [blame]
module: github.com/ory/fosite
versions:
- fixed: v0.31.0
description: |
Uniqueness of JWT IDs (jti) are not checked, allowing the JWT to be
replayed.
published: 2021-07-28T12:00:00Z
cve: CVE-2020-15222
symbols:
- Fosite.AuthenticateClient
links:
commit: https://github.com/ory/fosite/commit/0c9e0f6d654913ad57c507dd9a36631e1858a3e9
context:
- https://github.com/ory/fosite/security/advisories/GHSA-v3q9-2p3m-7g43