About
Announcements
Contribute information
Unknown
Missing JWT issuer and signer validation in ALB middleware
Published Mon, Oct 21st, 2024
Platforms
Summary
Affected Services
AWS ALB Route Directive Adapter For Istio, AspNetCore for Application Load Balancer OpenId Connect
Tracked CVEs
CVE-2024-8901, CVE-2024-10125
References
https://aws.amazon.com/security/security-bulletins/AWS-2024-011/
https://aws.amazon.com/security/security-bulletins/AWS-2024-012/
Entry Status
Stub
Disclosure Date
-
Exploitablity Period
-
Known ITW Exploitation
-
Detection Methods
-
Piercing Index Rating
-
Discovered by
Miggo Security
More vulnerabilities...
Missing JWT issuer and signer validation in ALB middleware
Miggo Security
Mon, Oct 21st, 2024
Missing JWT issuer and signer validation in ALB middleware
Miggo Security
Mon, Oct 21st, 2024
Missing JWT issuer and signer validation in ALB middleware
Miggo Security
Mon, Oct 21st, 2024
View all