Lucene search
GitHub Advisory DatabaseGHSA-6C5P-J8VQ-PQHJHistoryApr 26, 2024 - 12:30 a.m.
python-jose algorithm confusion with OpenSSH ECDSA keys
2024-04-2600:30:35
CWE-327
GitHub Advisory Database
github.com
29
python-jose
algorithm confusion
openssh
ecdsa keys
cve-2022-29217
python-jose through 3.3.0 has algorithm confusion with OpenSSH ECDSA keys and other key formats. This is similar to CVE-2022-29217.
| CPE | Name | Operator | Version |
|---|---|---|---|
| python-jose | le | 3.3.0 |
Related
cvelist
cvelist
CVE-2024-33663
2024-04-25 00:00:00
Key confusion through non-blocklisted public key formats in PyJWT
2022-05-24 14:10:10
cve
cve
CVE-2024-33663
2024-04-26 00:15:09
CVE-2022-29217
2022-05-24 15:15:00
osv
osv
CVE-2024-33663
2024-04-26 00:15:09
python-jose algorithm confusion with OpenSSH ECDSA keys
2024-04-26 00:30:35
Key confusion through non-blocklisted public key formats
2022-05-24 22:17:27
redhatcve
redhatcve
CVE-2024-33663
2024-04-26 06:04:23
CVE-2022-29217
2022-05-25 02:21:09
debiancve
debiancve
CVE-2024-33663
2024-04-26 00:15:09
CVE-2022-29217
2022-05-24 15:15:00
ubuntucve
ubuntucve
CVE-2024-33663
2024-04-26 00:00:00
CVE-2022-29217
2022-05-24 00:00:00
nessus
nessus
openSUSE 15 Security Update : python-python-jose (openSUSE-SU-2024:0118-1)
2024-05-08 00:00:00
EulerOS 2.0 SP9 : python-jwt (EulerOS-SA-2022-2302)
2022-09-14 00:00:00
SUSE SLES15 Security Update : python-PyJWT (SUSE-SU-2022:2403-1)
2022-07-15 00:00:00
veracode
veracode
Improper Signature Validation
2024-04-29 06:33:23
Authentication Bypass
2022-05-25 07:35:03
suse
suse
Security update for python-PyJWT (important)
2022-07-14 00:00:00
prion
prion
Code injection
2022-05-24 15:15:00
openvas
openvas
Ubuntu: Security Advisory (USN-5526-1)
2022-07-21 00:00:00
openSUSE: Security Advisory for python-PyJWT (SUSE-SU-2022:2402-1)
2022-07-15 00:00:00
Fedora: Security Advisory for python-jwt (FEDORA-2022-3cf456dc20)
2022-05-28 00:00:00
ubuntu
ubuntu
PyJWT vulnerability
2022-07-20 00:00:00
ibm
ibm
cbl_mariner
cbl_mariner
CVE-2022-29217 affecting package python-jwt for versions less than 2.4.0-1
2022-06-26 03:29:33
CVE-2022-29217 affecting package python-jwt 1.7.1-9
2022-07-14 20:59:55
fedora
fedora
[SECURITY] Fedora 35 Update: python-jwt-2.4.0-1.fc35
2022-06-01 01:27:09
[SECURITY] Fedora 36 Update: python-jwt-2.4.0-1.fc36
2022-05-27 01:10:44
github
github
Key confusion through non-blocklisted public key formats
2022-05-24 22:17:27
alpinelinux
alpinelinux
CVE-2022-29217
2022-05-24 15:15:00
mageia
mageia
Updated python-pyjwt packages fix security vulnerability
2022-07-01 00:31:09