Vulnerabilities > Reason Jose Project

DATE CVE VULNERABILITY TITLE RISK
2023-02-01 CVE-2023-23928 Unspecified vulnerability in Reason-Jose Project Reason-Jose
reason-jose is a JOSE implementation in ReasonML and OCaml.`Jose.Jws.validate` does not check HS256 signatures.
network
low complexity
reason-jose-project
critical
9.8