Every CVE whose affected-product data names Latchset Jwcrypto, ordered by CVSS severity, with EPSS exploit prediction and CISA KEV status.
CVEs (4)
CVE-2024-28102 — CVSS 6.8 (medium): JWCrypto implements JWK, JWS, and JWE specifications using python-cryptography. Prior to version 1.5.6, an attacker can cause a denial of…
CVE-2016-6298 — CVSS 5.3 (medium): The _Rsa15 class in the RSA 1.5 algorithm implementation in jwa.py in jwcrypto before 0.3.2 lacks the Random Filling protection mechanism…
CVE-2023-6681 — CVSS 5.3 (medium): A vulnerability was found in JWCrypto. This flaw allows an attacker to cause a denial of service (DoS) attack and possible password…
CVE-2026-39373 — CVSS 5.3 (medium): JWCrypto implements JWK, JWS, and JWE specifications using python-cryptography. Prior to 1.5.7, an unauthenticated attacker can exhaust…