Biscuitsec Biscuit-auth — known CVE vulnerabilities
Every CVE whose affected-product data names Biscuitsec Biscuit-auth, ordered by CVSS severity, with EPSS exploit prediction and CISA KEV status.
CVEs (2)
CVE-2022-31053 — CVSS 9.8 (critical): Biscuit is an authentication and authorization token for microservices architectures. The Biscuit specification version 1 contains a…
CVE-2024-41949 — CVSS 3.0 (low): biscuit-rust is the Rust implementation of Biscuit, an authentication and authorization token for microservices architectures. Third-party…