2 matches found
Linux Distros Unpatched Vulnerability : CVE-2024-29371
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - In jose4j before 0.9.6, an attacker can cause a Denial-of-Service DoS condition by crafting a malicious JSON Web Encryption JWE token with an exceptionally high...
CVE-2024-28102
An uncontrolled resource consumption vulnerability was found in python-jwcrypto. If a malicious JWE token with a high compression ratio is passed to the server, the server will consume a lot of memory and processing time, leading to a denial of service. Mitigation Mitigation for this issue is...