CVE-2025-45767

High CVSS 7.0

Overview

jose v6.0.10 was discovered to contain weak encryption. NOTE: this is disputed by a third party because the claim of "do not meet recommended security standards" does not reflect guidance in a final publication.

CWE: CWE-327 Published: 2025-08-01T15:15:32.543

Risk analysis

This vulnerability is rated 🟠 HIGH.

CVSS: 7.0 (HIGH)
Detected tags: crypto (tag impact: MODERATE)

Recommended actions:

Drop weak ciphers/protocols; prefer modern, safe defaults.

Overview

Recommended tools

Tags