VYPR

Scitokens Cpp Library

by Scitokens

Source repositories

CVEs (2)

  • CVE-2026-32725HigMar 31, 2026
    risk 0.47cvss 8.3epss 0.01

    SciTokens C++ is a minimal library for creating and using SciTokens from C or C++. Prior to version 1.4.1, scitokens-cpp is vulnerable to an authorization bypass when processing path-based scopes in tokens. The library normalizes the scope path from the token before…

  • CVE-2026-32726HigMar 31, 2026
    risk 0.46cvss 8.1epss 0.00

    SciTokens C++ is a minimal library for creating and using SciTokens from C or C++. Prior to version 1.4.1, scitokens-cpp is vulnerable to an authorization bypass in path-based scope validation. The enforcer used a simple string-prefix comparison when checking whether a requested…