CVE Daily

CVE-2025-49152

The affected products contain JSON Web Tokens (JWT) that do not expire, which co...

High CVSS 8.7

Overview

The affected products contain JSON Web Tokens (JWT) that do not expire, which could allow an attacker to gain access to the system.

CWE: CWE-613 Published: 2025-06-25T17:15:38.100
Risk analysis

This vulnerability is rated 🟠 HIGH.

  • CVSS: 8.7 (HIGH)
  • Detected tags: jwt (tag impact: LOW)

Recommended actions:

  • Use strong algorithms (HS256/RS256), rotate secrets, short expiries.

Recommended tools

Tags