2 matches found
PT-2023-32738
Name of the Vulnerable Software and Affected Versions JWCrypto affected versions not specified Description A flaw was found in JWCrypto, allowing an attacker to cause a denial of service DoS attack and making password brute-force and dictionary attacks more resource-intensive. This issue results ...
DEBIAN-CVE-2022-36083
JOSE is "JSON Web Almost Everything" - JWA, JWS, JWE, JWT, JWK, JWKS with no dependencies using runtime's native crypto in Node.js, Browser, Cloudflare Workers, Electron, and Deno. The PBKDF2-based JWE key management algorithms expect a JOSE Header Parameter named p2c PBES2 Count, which determine...