pkg:PyPI/pyjwt

13 total CVEsHIGH8MEDIUM3LOW2

✅ Check your installed version

All known vulnerabilities

  • HIGH7.5CVE-2026-32597PyJWT accepts unknown `crit` header extensions
    from 0, < 2.12.0
  • HIGH7.5CVE-2026-32597PyJWT accepts unknown `crit` header extensions
    from 0, < 2.12.0
  • HIGH7.5CVE-2017-11424pyjwt - security update
    from 0, < 1.5.1
  • HIGH7.5CVE-2017-11424pyjwt - security update
    from 0, < 1.5.1
  • HIGH7.4CVE-2026-48526PyJWT is a JSON Web Token implementation in Python.
    from 0, < 2.13.0
  • HIGH7.4CVE-2022-29217Key confusion through non-blocklisted public key formats
    >= 1.5.0, < 2.4.0
  • HIGH7.4CVE-2022-29217Key confusion through non-blocklisted public key formats
    from 0, < 9c528670c455b8d948aff95ed50e22940d1ad3fc | >= 1.5.0, < 2.4.0
  • HIGH7.0CVE-2025-45768pyjwt v2.10.1 was discovered to contain weak encryption.
    from 0, <= 2.10.1
  • MEDIUM5.4CVE-2026-48523PyJWT is a JSON Web Token implementation in Python.
    >= 2.9.0, < 2.12.1
  • MEDIUM5.3CVE-2026-48525PyJWT is a JSON Web Token implementation in Python.
    >= 2.8.0, < 2.13.0
  • MEDIUM4.2CVE-2026-48522PyJWT is a JSON Web Token implementation in Python.
    from 0, < 2.13.0
  • LOW3.7CVE-2026-48524PyJWT is a JSON Web Token implementation in Python.
    from 0, < 2.13.0
  • LOW2.2CVE-2024-53861PyJWT Issuer field partial matches allowed
    >= 2.10.0, < 2.10.1