Lucene search
GitHub Advisory DatabaseGHSA-6QVW-249J-H44CHistoryFeb 29, 2024 - 3:33 a.m.
jose4j denial of service via specifically crafted JWE
2024-02-2903:33:14
GitHub Advisory Database
github.com
16
jose4j
denial of service
crafted jwe
java
cpu consumption
pbes2 count
software
The jose4j component before 0.9.4 for Java allows attackers to cause a denial of service (CPU consumption) via a large p2c (aka PBES2 Count) value.
Affected configurations
Node
org.bitbucket.b_c\Matchjose4j
| CPE | Name | Operator | Version |
|---|---|---|---|
| org.bitbucket.b_c:jose4j | lt | 0.9.4 |
Related
nessus
nessus
SUSE SLES15 Security Update : SUSE Manager Server 4.3 (SUSE-SU-2024:1532-1)
2024-05-07 00:00:00
IBM WebSphere Application Server 8.5.5.3 < 8.5.5.26 / 9.x < 9.0.5.20 / Liberty 21.0.0.3 < 24.0.0.4 DoS (7145942)
2024-04-04 00:00:00
SUSE SLES15 Security Update : SUSE Manager Server 4.3 (SUSE-SU-2024:1507-1)
2024-05-07 00:00:00
ibm
ibm
Security Bulletin: IBM WebSphere Application Server and IBM WebSphere Application Server Liberty are vulnerable to a denial of service due to jose4j (CVE-2023-51775)
2024-04-04 16:54:13
osv
osv
CVE-2023-51775
2024-02-29 01:42:05
jose4j denial of service via specifically crafted JWE
2024-02-29 03:33:14
cgr
cgr
CVE-2023-51775 vulnerabilities
2024-05-19 03:07:16
ubuntucve
ubuntucve
CVE-2023-51775
2024-02-29 00:00:00
wolfi
wolfi
CVE-2023-51775 vulnerabilities
2024-05-29 03:07:31
cvelist
cvelist
CVE-2023-51775
2023-12-25 00:00:00
debiancve
debiancve
CVE-2023-51775
2024-02-29 01:42:05
prion
prion
Design/Logic Flaw
2024-02-29 01:42:00
nvd
nvd
CVE-2023-51775
2024-02-29 01:42:05
veracode
veracode
Denial Of Service (DoS)
2024-03-05 06:37:59
cve
cve
CVE-2023-51775
2024-02-29 01:42:05
redhatcve
redhatcve
CVE-2023-51775
2024-02-29 09:03:19
redhat
redhat
oracle
oracle
Oracle Critical Patch Update Advisory - April 2024
2024-04-16 00:00:00