CVE-2019-1020015
NONE EPSS 63.8%
Published Jul 29, 20196y ago ยท Modified Jun 17, 20262w ago
Published Jul 29, 2019 6y ago
Last Modified Jun 17, 2026 2w ago
Description
graphql-engine (aka Hasura GraphQL Engine) before 1.0.0-beta.3 mishandles the audience check while verifying JWT.
Threat Intelligence
EPSS Exploit Probability
63.8% percentile
Exploit & Patch Status
No Known Exploit
Patch Available
Affected Products 4
References 1
- github.com https://github.com/hasura/graphql-engine/commit/f2f14e727b051e3003ba44b9b63eab8186b291ac
Remediation
- github.com https://github.com/hasura/graphql-engine/commit/f2f14e727b051e3003ba44b9b63eab8186b291ac