Vulnerabilities > Auth0 > Auth0 JS > Critical

DATE CVE VULNERABILITY TITLE RISK
2018-04-04 CVE-2018-6873 Improper Authentication vulnerability in Auth0 Auth0.Js
The Auth0 authentication service before 2017-10-15 allows privilege escalation because the JWT audience is not validated.
network
low complexity
auth0 CWE-287
critical
9.8