Oliver-Jung

**Name of the Vulnerable Software and Affected Versions** Common versions prior to commit 3b96cb0293d3443b870351945f41d7d55cb34b53 **Description** The issue is related to the improper verification of the signature of JSON Web Tokens (JWTs) in the Common package. This allows an attacker to forge a valid JWT, potentially leading to authentication bypasses. **Recommendations** For versions prior to commit 3b96cb0293d3443b870351945f41d7d55cb34b53, update to a version that includes the patch, specifically commit 3b96cb0293d3443b870351945f41d7d55cb34b53. As a temporary workaround, consider using the `parseClaimsJws` method to correctly verify the signature of a JWT until the patch is applied.