Konga · Konga · CVE-2023-39846
**Name of the Vulnerable Software and Affected Versions**
Konga version 0.14.9
**Description**
An issue in Konga allows attackers to bypass authentication via a crafted JWT token.
**Recommendations**
For Konga version 0.14.9, update to a version that fixes the authentication bypass issue.
At the moment, there is no information about a newer version that contains a fix for this vulnerability.