erlang-jose (aka JOSE for Erlang and Elixir) through 1.11.6 allow attackers to cause a denial of service (CPU consumption) via a large p2c (aka PBES2 Count) value in a JOSE header.
Metrics
Affected Vendors & Products
References
History
No history.
MITRE
Status: PUBLISHED
Assigner: mitre
Published: 2024-03-19T00:00:00
Updated: 2024-08-02T22:23:44.054Z
Reserved: 2023-12-17T00:00:00
Link: CVE-2023-50966
Vulnrichment
Updated: 2024-08-02T22:23:44.054Z
NVD
Status : Awaiting Analysis
Published: 2024-03-19T15:15:07.113
Modified: 2024-08-02T15:35:15.213
Link: CVE-2023-50966
Redhat