CVE-2023-23928 Blast Radius

MEDIUM • CVSS 5.9reason-jose is a JOSE implementation in ReasonML and OCaml.`Jose.Jws.validate` does not check HS256 signatures. This allows tampering of JWS header an

Is Your Infrastructure Using These Packages?

EchelonGraph automatically scans your cloud infrastructure and SBOMs to map your exposure to vulnerabilities like CVE-2023-23928.

Start Free Scan →← Back to CVE-2023-23928