CVE-2024-21664 | lestrrat-go jwx up to 2.0.18 JSON deserialization

Posted by Angelo Barbosa | Jan 9, 2024 | CVE

A vulnerability, which was classified as problematic, was found in lestrrat-go jwx up to 2.0.18. Affected is an unknown function of the component JSON Handler. The manipulation leads to deserialization.

This vulnerability is traded as CVE-2024-21664. It is possible to launch the attack remotely. There is no exploit available.

It is recommended to upgrade the affected component.

CVE-2024-21664 | lestrrat-go jwx up to 2.0.18 JSON deserialization

Related Posts

CVE-2024-22815 | Tormach xsTECH CNC Router 2.9.6 Commands denial of service

CVE-2024-40913 | Linux Kernel up to 6.1.94/6.6.34/6.9.5 cachefiles copy_to_user reference count

CVE-2024-35779 | Live Composer Team Page Builder Plugin up to 1.5.42 on WordPress cross site scripting

CVE-2024-33516 | Aruba ArubaOS up to 8.10.0.10/8.11.2.1/10.4.1.0/10.5.1.0 Auth Service denial of service (ARUBA-PSA-2024-004)