Vulnerabilities in benmcollins

2 results

CVE-2026-44699CRITICALLibJWT: Algorithm confusion allows JWT forgery with RSA JWK as empty-key HMACEPSS 0.2%CVE-2026-33996MEDIUMLibJWT has NULL/bounds validation in JWK octet and RSA PSS parsingEPSS 0.1%