CVE-2024-33663

Опубликовано: 26 апр. 2024

Источник: debian

EPSS Низкий

Описание

python-jose through 3.3.0 has algorithm confusion with OpenSSH ECDSA keys and other key formats. This is similar to CVE-2022-29217.

Пакет	Статус	Версия исправления	Релиз	Тип
python-jose	removed			package
python-jose	ignored		bookworm	package

EPSS

Процентиль: 23%

0.00074

Низкий

CVE-2024-33663

CVSS3: 6.5

ubuntu

около 1 года назад

python-jose through 3.3.0 has algorithm confusion with OpenSSH ECDSA keys and other key formats. This is similar to CVE-2022-29217.

CVE-2024-33663

redhat

около 1 года назад

python-jose through 3.3.0 has algorithm confusion with OpenSSH ECDSA keys and other key formats. This is similar to CVE-2022-29217.

CVE-2024-33663

CVSS3: 6.5

nvd

около 1 года назад

python-jose through 3.3.0 has algorithm confusion with OpenSSH ECDSA keys and other key formats. This is similar to CVE-2022-29217.

openSUSE-SU-2024:0118-1

suse-cvrf

около 1 года назад

Security update for python-python-jose

GHSA-6c5p-j8vq-pqhj

CVSS3: 7.4

github

около 1 года назад

python-jose algorithm confusion with OpenSSH ECDSA keys

EPSS

Процентиль: 23%

0.00074

Низкий