We read every piece of feedback, and take your input very seriously.
To see all available qualifiers, see our documentation.
Have a question about this project? # for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “#”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? # to your account
python-jose through 3.3.0 has algorithm confusion with OpenSSH ECDSA keys and other key formats. This is similar to CVE-2022-29217.
Below are the risk factors associated to this issue - Critical severity, Package in use
Vulnerability link - https://nvd.nist.gov/vuln/detail/CVE-2024-33663
The text was updated successfully, but these errors were encountered:
I recommend updating to the latest version of python-jose, as this vulnerability was addressed in issue #346 and fixed in #369.
Sorry, something went wrong.
No branches or pull requests
python-jose through 3.3.0 has algorithm confusion with OpenSSH ECDSA keys and other key formats. This is similar to CVE-2022-29217.
Below are the risk factors associated to this issue -
Critical severity, Package in use
Vulnerability link - https://nvd.nist.gov/vuln/detail/CVE-2024-33663
The text was updated successfully, but these errors were encountered: