All 3 CVE vulnerabilities found in jwx, with AI-generated Chinese analysis, references, and POCs.
Vendor: lestrrat-go
| CVE ID | Title | CVSS | Severity | Published |
|---|---|---|---|---|
| CVE-2024-28122 | JWX vulnerable to a denial of service attack using compressed JWE message CWE-400 | 6.8 | Medium | 2024-03-09 |
| CVE-2024-21664 | Parsing JSON serialized payload without protected field can lead to segfault CWE-476 | 4.3 | Medium | 2024-01-09 |
| CVE-2023-49290 | Malicious parameters can cause a denial of service in lestrrat-go/jwx CWE-400 | 5.3 | Medium | 2023-12-04 |
All 3 known CVE vulnerabilities affecting jwx with full Chinese analysis, references, and POCs where available.