AI Score
Confidence
Low
A vulnerability was found in the Nimbus Jose JWT package. This issue could allow an attacker to use a malicious large JWE p2c header value for PasswordBasedDecrypter and cause a Denial of Service (DoS).
bugzilla.redhat.com/show_bug.cgi?id=2309764
nvd.nist.gov/vuln/detail/CVE-2023-52428
www.cve.org/CVERecord?id=CVE-2023-52428