CVE-2025-45765 | Teknoloji dünyasından en güncel haberleri ve güvenlikle ilgili gelişmeleri takip edin.

ruby-jwt v3.0.0.beta1 was discovered to contain weak encryption. NOTE: the Supplier's perspective is "keysize is not something that is enforced by this library.…
Critical CVSS: 9.1

CVE-2025-45765

ruby-jwt v3.0.0.beta1 was discovered to contain weak encryption. NOTE: the Supplier's perspective is "keysize is not something that is enforced by this library. Currently more recent versions of OpenSSL are enforcing some key sizes and those restrictions apply to the users of this gem also."
Vendor
-
Product
-
CWE
CWE-326
Yayın Tarihi
2025-08-07 21:15:27
Güncelleme
2025-08-12 15:15:29
Source Identifier
cve@mitre.org
KEV Date Added
-

Kategoriler

CWE-326 CRITICAL 2025

Referanslar

https://gist.github.com/ZupeiNie/c621253068ce5b64911629534879e8f9 https://github.com/jwt/ruby-jwt/issues/668