A vulnerability was found in JJWT up to 0.12.5. It has been declared as problematic. This vulnerability affects the function setSigningKey. The manipulation leads to Privilege Escalation.
This vulnerability was named CVE-2024-31033. Access to the local network is required for this attack. There is no exploit available.