Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
rhonabwy project rhonabwy vulnerabilities and exploits
(subscribe to this query)
NA
CVE-2022-38493
Rhonabwy 0.9.99 up to and including 1.1.x prior to 1.1.7 doesn't check the RSA private key length before RSA-OAEP decryption. This allows malicious users to cause a Denial of Service via a crafted JWE (JSON Web Encryption) token.
Rhonabwy Project Rhonabwy
5
CVSSv2
CVE-2022-32096
Rhonabwy before v1.1.5 exists to contain a buffer overflow via the component r_jwe_aesgcm_key_unwrap. This vulnerability allows malicious users to cause a Denial of Service (DoS) via a crafted JWE token.
Rhonabwy Project Rhonabwy
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
SSTI
CVE-2024-35863
CVE-2024-35910
man-in-the-middle
CVE-2024-35912
CVE-2024-25742
LFI
CVE-2024-32002
CVE-2024-22120
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started