CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

2 matches found

ATTACKERKB•added 2024/02/11 5:15 a.m.•2 views

CVE-2023-52428

In Connect2id Nimbus JOSE+JWT before 9.37.2, an attacker can cause a denial of service resource consumption via a large JWE p2c header value aka iteration count for the PasswordBasedDecrypter PBKDF2 component...

7.5CVSS7.3AI score0.00105EPSS

Exploits0References4

Positive Technologies•added 2024/02/10 12:0 a.m.•3 views

PT-2024-3099 · Atlassian +1 · Confluence Data Center/Server +4

Name of the Vulnerable Software and Affected Versions: Connect2id Nimbus JOSE+JWT versions prior to 9.37.2 Confluence Data Center and Server versions prior to 7.19.23 Confluence Data Center and Server versions prior to 8.5.11 Confluence Data Center and Server versions prior to 8.6.2 Confluence Da...

8.7CVSS6AI score0.00105EPSS

Exploits0References20

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by