Django Rest Framework Json Web Tokens
1 CVEs
product
Monthly
An issue was discovered in drf-jwt 1.15.x before 1.15.1. Rated critical severity (CVSS 9.1), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.
Python
Authentication Bypass
Django Rest Framework Json Web Tokens
NVD
GitHub
CVSS 3.1
9.1
EPSS
1.3%
CVE-2020-10594
PyPI
EPSS 1%
CVSS 9.1
CRITICAL
PATCH
Act Now
An issue was discovered in drf-jwt 1.15.x before 1.15.1. Rated critical severity (CVSS 9.1), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.
Python
Authentication Bypass
Django Rest Framework Json Web Tokens
NVD
GitHub