Vulnerabilities > CVE-2019-1020015 - Unspecified vulnerability in Hasura Graphql Engine 1.0.0
Attack vector
NETWORK Attack complexity
LOW Privileges required
NONE Confidentiality impact
NONE Integrity impact
HIGH Availability impact
NONE Summary
graphql-engine (aka Hasura GraphQL Engine) before 1.0.0-beta.3 mishandles the audience check while verifying JWT.
Vulnerable Configurations
| Part | Description | Count |
|---|---|---|
| Application | 4 |