CVE Search Engine - Security Vulnerabilities and Exploits Search Tool | Vulners.com

🔥 Daily Hot!

💪🏽 CPE Enhanced Advisories

🕶 Shadow Exploits

🕵🏼 Vulners CPE

🔐 Security news

💻 Exploit updates

📑 Blogs review

🐧 Linux vulnerabilities

🤖 AI High Score

show all

4 matches found

EUVD•added 2025/10/03 8:7 p.m.•1 views

EUVD-2023-28003

Malicious code in bioql PyPI...

9.8CVSS9.2AI score0.00165EPSS

Exploits0References3

RedhatCVE•added 2025/05/23 3:19 a.m.•3 views

CVE-2023-23928

reason-jose is a JOSE implementation in ReasonML and OCaml.Jose.Jws.validate does not check HS256 signatures. This allows tampering of JWS header and payload data if the service does not perform additional checks. Such tampering could expose applications using reason-jose to authorization bypass...

9.8CVSS6.8AI score0.00165EPSS

Exploits0References1

Prion•added 2023/02/01 1:15 a.m.•11 views

Authorization

reason-jose is a JOSE implementation in ReasonML and OCaml.Jose.Jws.validate does not check HS256 signatures. This allows tampering of JWS header and payload data if the service does not perform additional checks. Such tampering could expose applications using reason-jose to authorization bypass...

7.5CVSS9.3AI score0.00165EPSS

Exploits0References3Affected Software1

Cvelist•added 2023/02/01 12:59 a.m.•11 views

CVE-2023-23928 reason-jose ignores signature checks

reason-jose is a JOSE implementation in ReasonML and OCaml.Jose.Jws.validate does not check HS256 signatures. This allows tampering of JWS header and payload data if the service does not perform additional checks. Such tampering could expose applications using reason-jose to authorization bypass...

5.9CVSS9.6AI score0.00165EPSS

Exploits0References3

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by