Lucene search
GoogleOSV:GO-2024-2454HistoryJan 23, 2024 - 6:01 p.m.
Panic due to nil pointer dereference in github.com/lestrrat-go/jwx/v2
2024-01-2318:01:33
Google
osv.dev
4
panic
nil pointer
dereference
github.com
lestrrat-go
jwx/v2
software
7.5 High
CVSS3
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
HIGH
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
7 High
AI Score
Confidence
Low
0.001 Low
EPSS
Percentile
23.2%
Panic due to nil pointer dereference in github.com/lestrrat-go/jwx/v2
| CPE | Name | Operator | Version |
|---|---|---|---|
| github.com/lestrrat-go/jwx | ge | 1.0.8 | |
| github.com/lestrrat-go/jwx | lt | 1.2.28 | |
| github.com/lestrrat-go/jwx/v2 | lt | 2.0.19 |
Related
cve
cve
CVE-2024-21664
2024-01-09 20:15:43
osv
osv
Parsing JSON serialized payload without protected field can lead to segfault
2024-01-09 16:18:48
CVE-2024-21664
2024-01-09 20:15:43
cgr
cgr
CVE-2024-21664 vulnerabilities
2024-05-19 03:07:16
veracode
veracode
Denial Of Service (DoS)
2024-01-10 06:19:31
redhatcve
redhatcve
CVE-2024-21664
2024-01-10 10:01:19
nvd
nvd
CVE-2024-21664
2024-01-09 20:15:43
wolfi
wolfi
CVE-2024-21664 vulnerabilities
2024-06-26 09:08:30
prion
prion
Null pointer dereference
2024-01-09 20:15:00
cvelist
cvelist
github
github
Parsing JSON serialized payload without protected field can lead to segfault
2024-01-09 16:18:48
7.5 High
CVSS3
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
HIGH
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
7 High
AI Score
Confidence
Low
0.001 Low
EPSS
Percentile
23.2%
Related for OSV:GO-2024-2454