13 matches found
TencentOS Server 4: python-jwt (TSSA-2026:0119)
The version of Tencent Linux installed on the remote TencentOS Server 4 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the TSSA-2026:0119 advisory. Package updates are available for TencentOS Server 4 that fix the following vulnerabilities:...
Amazon Linux 2023 : python3-jwt, python3-jwt+crypto (ALAS2023-2026-1467)
It is, therefore, affected by a vulnerability as referenced in the ALAS2023-2026-1467 advisory. pyjwt v2.10.1 was discovered to contain weak encryption. CVE-2025-45768 Tenable has extracted the preceding description block directly from the tested product security advisory. Note that Nessus has no...
Medium: python-jwt
Issue Overview: pyjwt v2.10.1 was discovered to contain weak encryption. CVE-2025-45768 Affected Packages: python-jwt Issue Correction: Run dnf update python-jwt --releasever 2023.10.20260302 or dnf update --advisory ALAS2023-2026-1467 --releasever 2023.10.20260302 to update your system. More...
Security Bulletin: IBM Watson Discovery Cartridge affected by vulnerability in PyJWT-2.10.1-py3-none-any.whl
Summary IBM Watson Discovery Cartridge affected by vulnerability in PyJWT-2.10.1-py3-none-any.whl Vulnerability Details CVEID:CVE-2025-45768 DESCRIPTION: pyjwt v2.10.1 was discovered to contain weak encryption. NOTE: this is disputed by the Supplier because the key length is chosen by the...
Security Bulletin: IBM Maximo Application Suite Ai-Service Component uses pyjwt v2.10.1 library which is vulnerable to CVE-2025-45768
Summary Security Bulletin: IBM Maximo Application Suite Ai-Service Component uses pyjwt v2.10.1 library which is vulnerable to CVE-2025-45768. This bulletin contains information regarding the vulnerability and its fixture. Vulnerability Details CVEID:CVE-2025-45768 DESCRIPTION: pyjwt v2.10.1 was...
CVE-2025-45768
pyjwt v2.10.1 was discovered to contain weak encryption. NOTE: this is disputed by the Supplier because the key length is chosen by the application that uses the library admittedly, library users may benefit from a minimum value and a mechanism for opting in to strict enforcement...
aap-client-python (>=0.1.1 <=0.1.3), abdelrahman-obfuscate (>=1.0.0 <=1.0.1) +1193 more potentially affected by CVE-2025-45768 via pyjwt (>=0.2.1 <=2.10.1)
pyjwt PYPI version =0.2.1, =0.1.1, =1.0.0, =2.0.0, =1.1.1, =0.8.44.4, =0.1.1, =0.1.1, =0.1.31, =0.1.0, =0.5.0, =0.6.2rc6 and more Source cves: CVE-2025-45768 Source advisory: OSV:PYSEC-2025-183...
acapy-agent (>=1.1.1 <=1.5.0rc1), acapy-agent-jamie-testing (=1.3.1rc1) +447 more potentially affected by CVE-2025-45768 via pyjwt (>=2.0.0 <=2.10.1)
pyjwt PYPI version =2.0.0, =1.1.1, =0.1.1, =0.1.31, =0.1.0, =0.5.0, =1.89.5, =0.1.0, =0.0.1, =0.1.59, =0.2.47, =24.12.0, =1.29.7, =1.37.0 - anote-generate =0.3.0 and more Source cves: CVE-2025-45768 Source advisory: SNYK:PYTHON-PYJWT-11356591...
CVE-2025-45768
CVE-2025-45768 : PyJWT 2.10.1 is reported to have weak encryption; supplier disputes note that key length is chosen by the app using the library. The IBM bulletin for Watson Discovery Cartridge (ICP Discover) cites PyJWT-2.10.1 as affected and recommends upgrading to Watson Discovery Cartridge 5....
CVE-2025-45768
pyjwt v2.10.1 was discovered to contain weak encryption. NOTE: this is disputed by the Supplier because the key length is chosen by the application that uses the library admittedly, library users may benefit from a minimum value and a mechanism for opting in to strict enforcement...
CVE-2025-45768
pyjwt v2.10.1 was discovered to contain weak encryption. NOTE: this is disputed by the Supplier because the key length is chosen by the application that uses the library admittedly, library users may benefit from a minimum value and a mechanism for opting in to strict enforcement...
CVE-2025-45768
pyjwt v2.10.1 was discovered to contain weak encryption. NOTE: this is disputed by the Supplier because the key length is chosen by the application that uses the library admittedly, library users may benefit from a minimum value and a mechanism for opting in to strict enforcement...
CVE-2025-45768
creationtimestamp| type| source ---|---|--- 2025-07-30 01:53:20+00:00| seen| https://gist.github.com/ZupeiNie/6f65e564f2067b876321d3dfdbb76569 2025-07-31 23:47:25+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3lvcd3qaw7i2e...