Lucene search
K

6 matches found

RedhatCVE
RedhatCVE
added 2023/12/05 8:12 a.m.27 views

CVE-2023-49290

A flaw was found in JWX. This issue occurs when passing crafted input to the JWE key management algorithm, which may result in a denial of service by using an excessive amount of CPU resources...

5.3CVSS5.2AI score0.00723EPSS
Exploits1References5
Wolfi
Wolfi
added 2023/12/05 12:15 a.m.43 views

CVE-2023-49290 vulnerabilities

Vulnerabilities for packages: kubescape, gitsign, falcoctl, falco, tekton-chains, vexctl...

5.3CVSS6.2AI score0.00723EPSS
Exploits1
Chainguard
Chainguard
added 2023/12/05 12:15 a.m.40 views

CVE-2023-49290 vulnerabilities

Vulnerabilities for packages: falco, gitsign, kubescape, falcoctl, vexctl, cosign-fips, tekton-chains, falcoctl-fips...

5.3CVSS6.2AI score0.00723EPSS
Exploits1
Vulnrichment
Vulnrichment
added 2023/12/04 11:42 p.m.5 views

CVE-2023-49290 Malicious parameters can cause a denial of service in lestrrat-go/jwx

lestrrat-go/jwx is a Go module implementing various JWx JWA/JWE/JWK/JWS/JWT, otherwise known as JOSE technologies. A p2c parameter set too high in JWE's algorithm PBES2- could lead to a denial of service. The JWE key management algorithms based on PBKDF2 require a JOSE Header Parameter called p2c...

5.3CVSS7.2AI score0.00723EPSS
Exploits1References2
CVE
CVE
added 2023/12/04 11:42 p.m.353 views

CVE-2023-49290

Technical details about CVE-2023-49290 are not publicly provided in the connected documents. The initial description offers summary and fixes; monitor for further advisories and confirmed exploit information.

5.3CVSS5.1AI score0.00723EPSS
Exploits1References2Affected Software1
Cvelist
Cvelist
added 2023/12/04 11:42 p.m.50 views

CVE-2023-49290 Malicious parameters can cause a denial of service in lestrrat-go/jwx

lestrrat-go/jwx is a Go module implementing various JWx JWA/JWE/JWK/JWS/JWT, otherwise known as JOSE technologies. A p2c parameter set too high in JWE's algorithm PBES2- could lead to a denial of service. The JWE key management algorithms based on PBKDF2 require a JOSE Header Parameter called p2c...

5.3CVSS5.5AI score0.00723EPSS
Exploits1References2
Rows per page
Query Builder