Skip to main content

Biscuit Auth

2 CVEs product

Monthly

CVE-2024-41949 Cargo MEDIUM PATCH This Month

biscuit-rust is the Rust implementation of Biscuit, an authentication and authorization token for microservices architectures. Rated medium severity (CVSS 6.4), this vulnerability is remotely exploitable, low attack complexity. No vendor patch available.

Privilege Escalation Biscuit Auth
NVD GitHub
CVSS 3.1
6.4
EPSS
0.2%
CVE-2022-31053 LIB CRITICAL POC PATCH Act Now

Biscuit is an authentication and authorization token for microservices architectures. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

Information Disclosure Jwt Attack Java Biscuit Auth Biscuit Go +2
NVD GitHub
CVSS 3.1
9.8
EPSS
1.0%
EPSS 0% CVSS 6.4
MEDIUM PATCH This Month

biscuit-rust is the Rust implementation of Biscuit, an authentication and authorization token for microservices architectures. Rated medium severity (CVSS 6.4), this vulnerability is remotely exploitable, low attack complexity. No vendor patch available.

Privilege Escalation Biscuit Auth
NVD GitHub
EPSS 1% CVSS 9.8
CRITICAL POC PATCH Act Now

Biscuit is an authentication and authorization token for microservices architectures. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

Information Disclosure Jwt Attack Java +4
NVD GitHub

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy