CVE-2023-50966
Published
CVSS v3
5.3
MEDIUM
CVSS v2
N/A
Affected
2
PROJECTS
Description
erlang-jose (aka JOSE for Erlang and Elixir) through 1.11.6 allow attackers to cause a denial of service (CPU consumption) via a large p2c (aka PBES2 Count) value in a JOSE header.
GitHub