Msrc Cbl2 Python-Jwt 2.3.0-1 On Cbl Mariner 2.0 vulnerabilities

1 known vulnerability affecting msrc/cbl2_python-jwt_2.3.0-1_on_cbl_mariner_2.0.

Total CVEs

1

CISA KEV

0

Public exploits

0

Exploited in wild

0

Severity breakdown

HIGH1

Vulnerabilities

Page 1 of 1

CVE-2025-45768HIGHCVSS 7.02025-07-08

CVE-2025-45768 [HIGH] CWE-311 pyjwt v2.10.1 was discovered to contain weak encryption. NOTE: this is disputed by the Supplier because the key length is chosen by the application that uses the library (admittedly, library users may pyjwt v2.10.1 was discovered to contain weak encryption. NOTE: this is disputed by the Supplier because the key length is chosen by the application that uses the library (admittedly, library users may benefit from a minimum value and a mechanism for opting in to strict