Vulnerabilities > GO Jose Project

DATE CVE VULNERABILITY TITLE RISK
2017-03-28 CVE-2016-9123 Integer Overflow or Wraparound vulnerability in Go-Jose Project Go-Jose
go-jose before 1.0.5 suffers from a CBC-HMAC integer overflow on 32-bit architectures.
network
low complexity
go-jose-project CWE-190
7.5
2017-03-28 CVE-2016-9122 Improper Access Control vulnerability in Go-Jose Project Go-Jose
go-jose before 1.0.4 suffers from multiple signatures exploitation.
network
low complexity
go-jose-project CWE-284
7.5
2017-03-28 CVE-2016-9121 Inadequate Encryption Strength vulnerability in Go-Jose Project Go-Jose
go-jose before 1.0.4 suffers from an invalid curve attack for the ECDH-ES algorithm.
network
low complexity
go-jose-project CWE-326
critical
9.1