Package impact
npm / fast-jwt
| CVE | Severity | CVSS | Risk | Flags | OS | Vendor | Published | Description |
|---|---|---|---|---|---|---|---|---|
| CVE-2026-44351 | critical | 9.1 | 9.1 | 16d ago | fast-jwt: JWT auth bypass due to empty HMAC secret accepted by async key resolver |
| CVE | Severity | CVSS | Risk | Flags | OS | Vendor | Published | Description |
|---|---|---|---|---|---|---|---|---|
| CVE-2026-44351 | critical | 9.1 | 9.1 | 16d ago | fast-jwt: JWT auth bypass due to empty HMAC secret accepted by async key resolver |