EPSS
Percentile
35.9%
gree/jose is vulnerable to signature verification bypass. The vulnerability exists as there was an issue in the key confusion/algorithm substitution.
github.com/nov/jose-php/commit/1cce55e27adf0274193eb1cd74b927a398a3df4b