Lucene search
K

6 matches found

Chainguard
Chainguard
added 2026/03/11 1:17 a.m.4 views

CVE-2026-27932 vulnerabilities

Vulnerabilities for packages: localstack...

7.5CVSS5.8AI score0.00432EPSS
Exploits2
OPENSUSE Linux
OPENSUSE Linux
added 2026/03/06 12:0 a.m.6 views

python311-joserfc-1.6.3-1.1 on GA media (moderate)

python311-joserfc-1.6.3-1.1 on GA media Announcement ID: openSUSE-SU-2026:10293-1 Rating: moderate Cross-References: CVE-2026-27932 Affected Products: openSUSE Tumbleweed An update that solves one vulnerability can now be installed. Description: These are all security issues fixed in the...

7.5CVSS5.8AI score0.00432EPSS
Exploits2
Packet Storm
Packet Storm
added 2026/03/06 12:0 a.m.183 views

📄 joserfc JWE PBES2 1.6.2 Denial of Service

A denial of service condition can occur in applications using the joserfc library when processing malicious JSON Web Encryption tokens that use the PBES2-HS256+A128KW algorithm...

7.5CVSS5.8AI score0.00432EPSS
Exploits2
Tenable Nessus
Tenable Nessus
added 2026/03/05 12:0 a.m.5 views

Linux Distros Unpatched Vulnerability : CVE-2026-27932

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - joserfc is a Python library that provides an implementation of several JSON Object Signing and Encryption JOSE standards. In 1.6.2 and earlier, a resource...

7.5CVSS5.8AI score0.00432EPSS
Exploits2References3
RedhatCVE
RedhatCVE
added 2026/03/04 5:2 a.m.8 views

CVE-2026-27932

A flaw was found in joserfc, a Python library for JSON Object Signing and Encryption JOSE standards. An unauthenticated attacker can cause a Denial of Service DoS by exploiting a resource exhaustion vulnerability. This occurs when the library decrypts a JSON Web Encryption JWE token using...

7.5CVSS5.8AI score0.00432EPSS
Exploits2References2
vulnersOsv
vulnersOsv
added 2026/03/02 6:47 p.m.6 views

did-sdk-python (>=1.0.0 <=1.1.3), django-ninja-aio-crud (>=1.0.5 <=2.32.0) +9 more potentially affected by CVE-2026-27932 via joserfc (>=0.9.0 <=1.6.1)

joserfc PYPI version =0.9.0, =1.0.0, =1.0.5, =2.5.0, =2.0.0, =3.0.2, =0.1.3, =0.18.1, =0.1.0, =0.9.0, =0.1.0, =0.5.0rc2 Source cves: CVE-2026-27932 Source advisory: OSV:GHSA-W5R5-M38G-F9F9...

7.5CVSS5.4AI score0.00432EPSS
Exploits2
Rows per page
Query Builder