Latchset Jwcrypto
3 CVEs affecting Latchset Jwcrypto. Latest disclosed: 2026-04-07. Critical: 0, High: 0.
| CVE | Severity | Score | Published | Summary |
|---|---|---|---|---|
CVE-2024-28102 | Medium | 6.8 | 2024-03-06 | JWCrypto implements JWK, JWS, and JWE specifications using python-cryptography. Prior to version 1.5.6, an attacker can cause a denial of service attack by pas… |
CVE-2026-39373 | Medium | 5.3 | 2026-04-07 | JWCrypto implements JWK, JWS, and JWE specifications using python-cryptography. Prior to 1.5.7, an unauthenticated attacker can exhaust server memory by sendin… |
CVE-2016-6298 | Medium | 5.3 | 2016-09-01 | The _Rsa15 class in the RSA 1.5 algorithm implementation in jwa.py in jwcrypto before 0.3.2 lacks the Random Filling protection mechanism, which makes it easie… |