VYPR

Maven package

io.jans/jans-config-api-server

pkg:maven/io.jans/jans-config-api-server

Vulnerabilities (1)

  • CVE-2025-53003HigJul 1, 2025
    affected < 1.8.0fixed 1.8.0

    The Janssen Project is an open-source identity and access management (IAM) platform. Prior to version 1.8.0, the Config API returns results without scope verification. This has a large internal surface attack area that exposes all sorts of information from the IDP including clien