Lucene search
MitreCVELIST:CVE-2022-38493HistoryAug 20, 2022 - 7:41 p.m.
CVE-2022-38493
2022-08-2019:41:15
mitre
www.cve.org
1
rhonabwy rsa-oaep decryption
denial of service
jwe token
EPSS
0.001
Percentile
38.4%
Rhonabwy 0.9.99 through 1.1.x before 1.1.7 doesnβt check the RSA private key length before RSA-OAEP decryption. This allows attackers to cause a Denial of Service via a crafted JWE (JSON Web Encryption) token.
Related
ubuntucve
ubuntucve
CVE-2022-38493
2022-08-20 00:00:00
prion
prion
Design/Logic Flaw
2022-08-20 20:15:00
debiancve
debiancve
CVE-2022-38493
2022-08-20 20:15:08
cve
cve
CVE-2022-38493
2022-08-20 20:15:08
nvd
nvd
CVE-2022-38493
2022-08-20 20:15:08