AI Score
Confidence
High
EPSS
Percentile
15.5%
erlang-jose (aka JOSE for Erlang and Elixir) through 1.11.6 allow attackers to cause a denial of service (CPU consumption) via a large p2c (aka PBES2 Count) value in a JOSE header.
github.com/P3ngu1nW/CVE_Request/blob/main/erlang-jose.md
github.com/potatosalad/erlang-jose
github.com/potatosalad/erlang-jose/commit/718d213f07b08056737923f8063d5df56dcb66ae
hexdocs.pm/jose/JOSE.html
nvd.nist.gov/vuln/detail/CVE-2023-50966