Lucene search
+L

CVE-2026-33996

🗓️ 27 Mar 2026 22:21:21Reported by Alpine Linux Development TeamType 
alpinelinux
 alpinelinux
🔗 security.alpinelinux.org👁 2 Views

LibJWT RSA-PSS JWK parsing allows NULL values; fixed in 3.3.0. Validate JWKs with jwk2key.

Related
Packages
Refs
ReporterTitlePublishedViews
Family
ATTACKERKB
CVE-2026-33996
27 Mar 202622:21
attackerkb
Circl
CVE-2026-33996
28 Mar 202602:20
circl
CNNVD
libjwt 代码问题漏洞
27 Mar 202600:00
cnnvd
CVE
CVE-2026-33996
27 Mar 202622:21
cve
Cvelist
CVE-2026-33996 LibJWT has NULL/bounds validation in JWK octet and RSA PSS parsing
27 Mar 202622:21
cvelist
Debian CVE
CVE-2026-33996
27 Mar 202622:21
debiancve
EUVD
EUVD-2026-16899
27 Mar 202622:21
euvd
NVD
CVE-2026-33996
27 Mar 202623:17
nvd
OSV
CVE-2026-33996 LibJWT has NULL/bounds validation in JWK octet and RSA PSS parsing
27 Mar 202622:21
osv
OSV
DEBIAN-CVE-2026-33996
27 Mar 202623:17
osv
Rows per page
OSOS VersionArchitecturePackagePackage VersionFilename
Alpine Linux3.23anylibjwt3.2.1-r0libjwt-3.2.1-r0.apk

Data

Build on a solid foundation with Vulners data

We provide the essential building blocks for cybersecurity solutions with comprehensive, structured, and constantly updated vulnerability and exploits data

Api

Power your application with Vulners API

The Vulners REST API offers reliable, high-performance access to vulnerability intelligence, with 99.9% SLA uptime and CDN-backed data delivery for seamless global access

App

Assess and manage vulnerabilities with Vulners tools

Built on top of Vulners' database and SDK, end-user solutions give security professionals and developers lightweight and powerful tools for vulnerability remediation

31 Mar 2026 20:39Current
5.9Medium risk
Vulners AI Score5.9
CVSS 3.15.5
CVSS 45.8
EPSS0.0015
SSVC
2