Posted on

Crypt::JWT up to 0.022 on Perl Access Control JWT.pm hmac weak authentication

A vulnerability was found in Crypt::JWT up to 0.022 on Perl and classified as critical. This issue affects the function hmac of the file JWT.pm of the component Access Control. Upgrading to version 0.023 eliminates this vulnerability. Applying the patch b98a59b42ded9f9e51b2560410106207c2152d6c is able to eliminate this problem. The best possible mitigation is suggested to be upgrading to the latest version.