7.1 High
AI Score
Confidence
Low
0.0004 Low
EPSS
Percentile
8.4%
python-jose through 3.3.0 has algorithm confusion with OpenSSH ECDSA keys and other key formats. This is similar to CVE-2022-29217.
github.com/advisories/GHSA-6c5p-j8vq-pqhj
github.com/mpdavis/python-jose/issues/346
nvd.nist.gov/vuln/detail/CVE-2024-33663