KKeensafeCompliance

← All findings

f-005 — Weak JWT — alg=none accepted

high · internet-banking · status open · first seen 2026-04-25

Framework mapping

Framework	Controls / requirements
ISO/IEC 27001:2022 ISMS	A.8.5
NIST SP 800-53 r5 Federal controls	SC-8(1) IA-2
OWASP Top 10 (2021) Web	A02:2021
MITRE ATT&CK Adversary TTPs	T1606.001

Evidence

Cross-reference: BAS evidence (where applicable).

Mapping JSON: /mapping/f-005