Описание
pyjwt v2.10.1 was discovered to contain weak encryption. NOTE: this is disputed by the Supplier because the key length is chosen by the application that uses the library (admittedly, library users may benefit from a minimum value and a mechanism for opting in to strict enforcement).
Ссылки
- Issue Tracking
- Product
- Product
Уязвимые конфигурации
EPSS
7 High
CVSS3
Дефекты
Связанные уязвимости
pyjwt v2.10.1 was discovered to contain weak encryption. NOTE: this is disputed by the Supplier because the key length is chosen by the application that uses the library (admittedly, library users may benefit from a minimum value and a mechanism for opting in to strict enforcement).
pyjwt v2.10.1 was discovered to contain weak encryption. NOTE: this is disputed by the Supplier because the key length is chosen by the application that uses the library (admittedly, library users may benefit from a minimum value and a mechanism for opting in to strict enforcement).
pyjwt v2.10.1 was discovered to contain weak encryption. NOTE: this is ...
pyjwt v2.10.1 was discovered to contain weak encryption.
EPSS
7 High
CVSS3