Vulnerabilities
Aggregated CVE / GHSA / KEV / OSV — filter by tag and category.
| ID | Title | |
|---|---|---|
| CVE-2026-48522 |
|
Vulnerability in pyjwt (CVE-2026-48522)
vulnerability in pyjwt (CVE-2026-48522). Risk of unauthorized operations or information disclosure. Exploitable via ``uri``. Mitigation: upgrade to `2.13.0` or later.
|
| CVE-2026-48523 |
|
Vulnerability in pyjwt (CVE-2026-48523)
vulnerability in pyjwt (CVE-2026-48523). Risk of unauthorized operations or information disclosure. Exploitable via ``PyJWK``. Mitigation: upgrade to `2.12.1` or later.
|
| CVE-2026-48524 |
|
Vulnerability in pyjwt (CVE-2026-48524)
vulnerability in pyjwt (CVE-2026-48524). Risk of unauthorized operations or information disclosure. Mitigation: upgrade to `2.13.0` or later.
|
| CVE-2026-48525 |
|
Vulnerability in pyjwt (CVE-2026-48525)
vulnerability in pyjwt (CVE-2026-48525). Risk of unauthorized operations or information disclosure. Exploitable via `POST /verify`. Mitigation: upgrade to `2.13.0` or later.
|
| CVE-2026-48526 |
|
Authentication Bypass in pyjwt (CVE-2026-48526)
authentication bypass in pyjwt (CVE-2026-48526). Confidential information can be exposed externally. Mitigation: upgrade to `2.13.0` or later.
|
| CVE-2026-32597 |
|
Vulnerability in pyjwt (CVE-2026-32597)
vulnerability in pyjwt (CVE-2026-32597). Data can be tampered with by attackers. Exploitable via ``crit``. Mitigation: upgrade to `2.12.0` or later.
|
| CVE-2017-11424 |
|
Vulnerability in pyjwt-project (CVE-2017-11424)
vulnerability in pyjwt-project (CVE-2017-11424). Data can be tampered with by attackers. Exploitable via ``invalid_strings``.
|