Unrated severityNVD Advisory· Published Mar 20, 2024· Updated Nov 4, 2025
CVE-2023-50967
CVE-2023-50967
Description
latchset jose through version 11 allows attackers to cause a denial of service (CPU consumption) via a large p2c (aka PBES2 Count) value.
Affected products
4- latchset/josedescription
- osv-coords3 versions
< 10-2.el8_10.3+ 2 more
- (no CPE)range: < 10-2.el8_10.3
- (no CPE)range: < 10-2.el8_10.3
- (no CPE)range: < 10-2.el8_10.3
Patches
0No patches discovered yet.
Vulnerability mechanics
AI mechanics synthesis has not run for this CVE yet.
References
4- lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/CIFPQUCLNWEAHYYJWCQD3AZPWYIV6YT3/mitrevendor-advisory
- lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/OOBFVMOAV732C7PY74AHJ62ZNKT3ISZ6/mitrevendor-advisory
- lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/W7EGLOAFN2PWZ75ZRLTUDUZCIPH2VFZU/mitrevendor-advisory
- github.com/P3ngu1nW/CVE_Request/blob/main/latch-jose.mdmitre
News mentions
0No linked articles in our index yet.