CVE-2022-32096
Published
CVSS v3
7.5
HIGH
CVSS v2
5
MEDIUM
Affected
1
PROJECT
Description
Rhonabwy before v1.1.5 was discovered to contain a buffer overflow via the component r_jwe_aesgcm_key_unwrap. This vulnerability allows attackers to cause a Denial of Service (DoS) via a crafted JWE token.
[PROJECT CLOSED] - Javascript Object Signing and Encryption (JOSE) library - JWK, JWKS, JWS, JWE and JWT
GitHub