Jose4J
1 CVEs
product
Monthly
jose4j before v0.9.3 allows attackers to set a low iteration count of 1000 or less. Rated high severity (CVSS 7.5), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.
Information Disclosure
Jose4J
NVD
GitHub
CVSS 3.1
7.5
EPSS
0.6%
CVE-2023-31582
Maven
EPSS 1%
CVSS 7.5
HIGH
PATCH
This Week
jose4j before v0.9.3 allows attackers to set a low iteration count of 1000 or less. Rated high severity (CVSS 7.5), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.
Information Disclosure
Jose4J
NVD
GitHub