✅ Check your installed version
All known vulnerabilities
CRITICAL9.8CVE-2016-7036python-jose failure to use a constant time comparison for HMAC keys from 0, < 1.3.2
CRITICAL9.8CVE-2016-7036python-jose failure to use a constant time comparison for HMAC keys from 0, < 1.3.2
HIGH7.4CVE-2024-33663python-jose algorithm confusion with OpenSSH ECDSA keys from 0, < 3.4.0
HIGH7.4CVE-2024-33663python-jose algorithm confusion with OpenSSH ECDSA keys from 0, < 3.4.0
MEDIUM5.3CVE-2024-29370In python-jose 3.3.0 (specifically jwe.decrypt), a vulnerability allows an attacker to cause a Denial-of-Service (DoS) condition by craftin… from 0, <= 3.3.0
MEDIUM5.3CVE-2024-33664python-jose denial of service via compressed JWE content from 0, < 3.4.0
MEDIUM5.3CVE-2024-33664python-jose denial of service via compressed JWE content from 0, < 3.4.0