CVE-2025-45768

Опубликовано: 31 июл. 2025

Источник: ubuntu

Приоритет: medium

EPSS Низкий

CVSS3: 7

Описание

pyjwt v2.10.1 was discovered to contain weak encryption.

Релиз	Статус	Примечание
devel	needs-triage
esm-infra/bionic	needs-triage
esm-infra/focal	needs-triage
esm-infra/xenial	needs-triage
jammy	needs-triage
noble	needs-triage
plucky	needs-triage
upstream	needs-triage

Показывать по

Ссылки на источники

EPSS

Процентиль: 1%

0.00012

Низкий

7 High

CVSS3

Связанные уязвимости

CVE-2025-45768

CVSS3: 5.6

redhat

23 дня назад

pyjwt v2.10.1 was discovered to contain weak encryption. NOTE: this is disputed by the Supplier because the key length is chosen by the application that uses the library (admittedly, library users may benefit from a minimum value and a mechanism for opting in to strict enforcement).

CVE-2025-45768

CVSS3: 7

nvd

22 дня назад

CVE-2025-45768

CVSS3: 7

debian

22 дня назад

pyjwt v2.10.1 was discovered to contain weak encryption. NOTE: this is ...

GHSA-xpf8-484v-j9w6

CVSS3: 7

github

22 дня назад

pyjwt v2.10.1 was discovered to contain weak encryption.

EPSS

Процентиль: 1%

0.00012

Низкий

7 High

CVSS3

CVE-2025-45768

Описание

Пакет pyjwt

Ссылки на источники

Связанные уязвимости