High severity8.1NVD Advisory· Published Apr 24, 2024· Updated Apr 15, 2026
CVE-2024-33531
CVE-2024-33531
Description
cdbattags lua-resty-jwt 0.2.3 allows attackers to bypass all JWT-parsing signature checks by crafting a JWT with an enc header with the value A256GCM.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
1- Range: =0.2.3
Patches
Vulnerability mechanics
References
3News mentions
0No linked articles in our index yet.