Latchset Jwcrypto
Don't miss out!
Thousands of developers use stack.watch to stay informed.Get an email whenever new security vulnerabilities are reported in Latchset Jwcrypto.
By the Year
In 2025 there have been 0 vulnerabilities in Latchset Jwcrypto. Last year, in 2024 Jwcrypto had 1 security vulnerability published. Right now, Jwcrypto is on track to have less security vulnerabilities in 2025 than it did last year.
| Year | Vulnerabilities | Average Score |
|---|---|---|
| 2025 | 0 | 0.00 |
| 2024 | 1 | 5.30 |
It may take a day or so for new Jwcrypto vulnerabilities to show up in the stats or in the list of recent security vulnerabilities. Additionally vulnerabilities may be tagged under a different product or component name.
Recent Latchset Jwcrypto Security Vulnerabilities
JWCrypto Library DoS via Computationally Intensive Brute-Force Capability
CVE-2023-6681
5.3 - Medium
- February 12, 2024
A vulnerability was found in JWCrypto. This flaw allows an attacker to cause a denial of service (DoS) attack and possible password brute-force and dictionary attacks to be more resource-intensive. This issue can result in a large amount of computational consumption, causing a denial of service attack.
Resource Exhaustion
The _Rsa15 class in the RSA 1.5 algorithm implementation in jwa.py in jwcrypto before 0.3.2 lacks the Random Filling protection mechanism, which makes it easier for remote attackers to obtain cleartext data
CVE-2016-6298
5.3 - Medium
- September 01, 2016
The _Rsa15 class in the RSA 1.5 algorithm implementation in jwa.py in jwcrypto before 0.3.2 lacks the Random Filling protection mechanism, which makes it easier for remote attackers to obtain cleartext data via a Million Message Attack (MMA).
Information Disclosure
Stay on top of Security Vulnerabilities
Want an email whenever new vulnerabilities are published for Latchset Jwcrypto or by Latchset? Click the Watch button to subscribe.
