Vulnerabilities

Report: CVE-2024-46508 - Yeti-Platform JWT Token Forgery Vulnerability

2026-05-08 0 views admin

CVE ID :CVE-2024-46508 Published : May 8, 2026, 6:16 a.m. | 1 hour, 4 minutes ago Description :yeti-platform yeti before 2.1.12 allows attackers to generate valid JWT tokens is the secret is not changed (by setting YETI_AUTH_SECRET_KEY to a value other than SECRET). Severity: 0.0 | NA Visit the link for more details, such as CVSS details, affected products, timeline, and more...

CVE Details

CVE ID

CVE-2024-46508

Published

May 8, 2026

🏷️ Tags

report46508platformtokenforgeryvulnerabilitypublishedminutescvecve-2024-46508

InfinitSec - Latest Cybersecurity, Technology & Gaming News

Report: CVE-2024-46508 - Yeti-Platform JWT Token Forgery Vulnerability

CVE Details

🏷️ Tags

More from Vulnerabilities

Report: CVE-2026-42160 - Data Space Portal: Incorrect Authorization and Client-Side Enforcement of Server

Report: CVE-2026-42190 - RedwoodSDK: Same-site CSRF in in server actions - Analysis

Report: CVE-2026-42189 - Russh: Pre-auth DoS via unbounded allocation in keyboard-interactive auth - Guide

Report: CVE-2026-42181 - Lemmy: SSRF and internal image disclosure in post link metadata via unvalidated

Trending

CVE-2025-61481: Critical Remote Code Execution Vulnerability in MikroTik RouterOS & SwitchOS

CVE-2025-43939: Dell Unity OS Command Injection (High)

Google disputes false claims of massive Gmail data breach

Microsoft: DNS outage impacts Azure and Microsoft 365 services

3.5B Accounts, 1 Critical Flaw: Meta Closes WhatsApp Data-Harvesting