A vulnerability has been found in Connect2id Nimbus JOSE+JWT up to 9.37.1 and classified as problematic. Affected by this vulnerability is an unknown functionality of the component JWE p2c Header Handler. The manipulation leads to resource consumption.

This vulnerability is known as CVE-2023-52428. Access to the local network is required for this attack to succeed. There is no exploit available.

It is recommended to upgrade the affected component.