CVE-2025-45768 | Teknoloji dünyasından en güncel haberleri ve güvenlikle ilgili gelişmeleri takip edin.

pyjwt v2.10.1 was discovered to contain weak encryption. NOTE: this is disputed by the Supplier because the key length is chosen by the application that uses th…
High CVSS: 7.0

CVE-2025-45768

pyjwt v2.10.1 was discovered to contain weak encryption. NOTE: this is disputed by the Supplier because the key length is chosen by the application that uses the library (admittedly, library users may benefit from a minimum value and a mechanism for opting in to strict enforcement).
Vendor
Pyjwt Project
Product
Pyjwt
CWE
CWE-311
Yayın Tarihi
2025-07-31 21:15:27
Güncelleme
2025-09-12 16:45:51
Source Identifier
cve@mitre.org
KEV Date Added
-

Kategoriler

CWE-311 Pyjwt HIGH Pyjwt Project 2025

Referanslar

https://gist.github.com/ZupeiNie/6f65e564f2067b876321d3dfdbb76569 https://github.com/jpadilla https://github.com/jpadilla/pyjwt