CVE-2025-3757

9.8CRITICAL

Versions of OpenPubkey library prior to 0.10.0 contained a vulnerability that would allow a specially crafted JWS to bypass signature verification.

Publicado: 5/13/2025Actualizado: 5/23/2025
Ver en NVDVer en MITRE

Descripción

Versions of OpenPubkey library prior to 0.10.0 contained a vulnerability that would allow a specially crafted JWS to bypass signature verification.

Análisis IAImpulsado por IA

Productos Afectados

openpubkeyopenpubkey

Referencias