Description
JPaseto before 0.3.0 generates weak hashes when using v2.local tokens.
Remediation
References
https://github.com/paseto-toolkit/jpaseto/releases/tag/jpaseto-0.3.0
Related Vulnerabilities
CVE-2017-16189 Vulnerability in npm package sly07
CVE-2020-7760 Vulnerability in maven package org.apache.marmotta.webjars:codemirror
CVE-2016-10534 Vulnerability in npm package electron-packager
CVE-2017-9096 Vulnerability in maven package com.itextpdf:forms
CVE-2021-21341 Vulnerability in maven package com.thoughtworks.xstream:xstream