Steeltoe JWT Key Cache Not Isolated Across Schemes: CVE-2025-50202
Security AdvisoryCVE-2025-50202HighSteeltoe
Affected:
- Steeltoe.Security.Authentication.CloudFoundryBase <= 3.3.0
- Steeltoe.Security.Authentication.JwtBearer <= 4.1.0
- Steeltoe.Security.Authentication.OpenIdConnect <= 4.1.0
Fixed in:
- 3.4.0
- 4.2.0
Referenced CVEs: CVE-2026-50202 · 5.9
文章内图片已隐藏以节省流量 · Upgrade to Pro to view images & offline archive
This content was auto-fetched from github.com, cleaned by our LLM pipeline, and translated to English. View original.