Filtered by vendor Hashicorp
Subscriptions
Filtered by product Hermes
Subscriptions
Total
1 CVE
| CVE | Vendors | Products | Updated | CVSS v3.1 |
|---|---|---|---|---|
| CVE-2025-1293 | 1 Hashicorp | 1 Hermes | 2025-12-18 | 8.2 High |
| Hermes versions up to 0.4.0 improperly validated the JWT provided when using the AWS ALB authentication mode, potentially allowing for authentication bypass. This vulnerability, CVE-2025-1293, was fixed in Hermes 0.5.0. | ||||
Page 1 of 1.