CVE-2018-6873

CVE-2018-6873

EPSS 2.3%

The Auth0 authentication service before 2017-10-15 allows privilege escalation because the JWT audience is not validated.

Affected products

Want to know if your infrastructure is exposed to this?

Talk to TrueHacking →

References

https://auth0.com/docs/security/bulletins/cve-2018-6873 http://www.securityfocus.com/bid/103695