Moderate severityNVD Advisory· Published Dec 25, 2023· Updated Nov 3, 2025
CVE-2023-51775
CVE-2023-51775
Description
The jose4j component before 0.9.4 for Java allows attackers to cause a denial of service (CPU consumption) via a large p2c (aka PBES2 Count) value.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected packages
Versions sourced from the GitHub Security Advisory.
| Package | Affected versions | Patched versions |
|---|---|---|
org.bitbucket.b_c:jose4jMaven | < 0.9.4 | 0.9.4 |
Affected products
48- osv-coords47 versionspkg:apk/chainguard/apache-nifipkg:apk/chainguard/apache-nifi-compatpkg:apk/chainguard/apache-nifi-toolkitpkg:apk/chainguard/confluent-common-dockerpkg:apk/chainguard/confluent-common-docker-basepkg:apk/chainguard/confluent-common-docker-ubpkg:apk/chainguard/confluent-kafkapkg:apk/chainguard/hadoop-fips-3.3.6pkg:apk/chainguard/kafka-jre-bcfipspkg:apk/wolfi/apache-nifipkg:apk/wolfi/apache-nifi-compatpkg:apk/wolfi/apache-nifi-toolkitpkg:apk/wolfi/confluent-common-dockerpkg:apk/wolfi/confluent-common-docker-basepkg:apk/wolfi/confluent-common-docker-ubpkg:apk/wolfi/confluent-kafkapkg:maven/org.bitbucket.b_c/jose4jpkg:rpm/suse/cobbler&distro=SUSE%20Manager%20Server%20Module%204.3pkg:rpm/suse/image-sync-formula&distro=SUSE%20Manager%20Server%20Module%204.3pkg:rpm/suse/inter-server-sync&distro=SUSE%20Manager%20Server%20Module%204.3pkg:rpm/suse/jose4j&distro=SUSE%20Manager%20Server%20Module%204.3pkg:rpm/suse/mgr-daemon&distro=SUSE%20Manager%20Proxy%20Module%204.3pkg:rpm/suse/release-notes-susemanager&distro=SUSE%20Manager%20Server%204.3pkg:rpm/suse/release-notes-susemanager-proxy&distro=SUSE%20Manager%20Proxy%204.3pkg:rpm/suse/smdba&distro=SUSE%20Manager%20Server%20Module%204.3pkg:rpm/suse/spacecmd&distro=SUSE%20Manager%20Proxy%20Module%204.3pkg:rpm/suse/spacecmd&distro=SUSE%20Manager%20Server%20Module%204.3pkg:rpm/suse/spacewalk-backend&distro=SUSE%20Manager%20Proxy%20Module%204.3pkg:rpm/suse/spacewalk-backend&distro=SUSE%20Manager%20Server%20Module%204.3pkg:rpm/suse/spacewalk-certs-tools&distro=SUSE%20Manager%20Proxy%20Module%204.3pkg:rpm/suse/spacewalk-certs-tools&distro=SUSE%20Manager%20Server%20Module%204.3pkg:rpm/suse/spacewalk-client-tools&distro=SUSE%20Manager%20Proxy%20Module%204.3pkg:rpm/suse/spacewalk-client-tools&distro=SUSE%20Manager%20Server%20Module%204.3pkg:rpm/suse/spacewalk-config&distro=SUSE%20Manager%20Server%20Module%204.3pkg:rpm/suse/spacewalk-java&distro=SUSE%20Manager%20Server%20Module%204.3pkg:rpm/suse/spacewalk-web&distro=SUSE%20Manager%20Proxy%20Module%204.3pkg:rpm/suse/spacewalk-web&distro=SUSE%20Manager%20Server%20Module%204.3pkg:rpm/suse/subscription-matcher&distro=SUSE%20Manager%20Server%20Module%204.3pkg:rpm/suse/supportutils-plugin-susemanager&distro=SUSE%20Manager%20Server%20Module%204.3pkg:rpm/suse/susemanager&distro=SUSE%20Manager%20Server%20Module%204.3pkg:rpm/suse/susemanager-docs_en&distro=SUSE%20Manager%20Server%20Module%204.3pkg:rpm/suse/susemanager-schema&distro=SUSE%20Manager%20Server%20Module%204.3pkg:rpm/suse/susemanager-sls&distro=SUSE%20Manager%20Server%20Module%204.3pkg:rpm/suse/susemanager-sync-data&distro=SUSE%20Manager%20Server%20Module%204.3pkg:rpm/suse/uyuni-common-libs&distro=SUSE%20Manager%20Proxy%20Module%204.3pkg:rpm/suse/uyuni-common-libs&distro=SUSE%20Manager%20Server%20Module%204.3pkg:rpm/suse/uyuni-reportdb-schema&distro=SUSE%20Manager%20Server%20Module%204.3
< 2.6.0-r2+ 46 more
- (no CPE)range: < 2.6.0-r2
- (no CPE)range: < 2.6.0-r2
- (no CPE)range: < 2.6.0-r2
- (no CPE)range: < 7.6.9-r0
- (no CPE)range: < 7.6.0-r20
- (no CPE)range: < 7.6.0-r20
- (no CPE)range: < 8.2.0.367-r0
- (no CPE)range: < 3.3.6-r18
- (no CPE)range: < 3.7.0-r0
- (no CPE)range: < 2.6.0-r2
- (no CPE)range: < 2.6.0-r2
- (no CPE)range: < 2.6.0-r2
- (no CPE)range: < 7.6.9-r0
- (no CPE)range: < 7.6.0-r20
- (no CPE)range: < 7.6.0-r20
- (no CPE)range: < 8.2.0.367-r0
- (no CPE)range: < 0.9.4
- (no CPE)range: < 3.3.3-150400.5.42.5
- (no CPE)range: < 0.1.1711646883.4a44375-150400.3.18.4
- (no CPE)range: < 0.3.3-150400.3.30.4
- (no CPE)range: < 0.5.1-150400.3.9.4
- (no CPE)range: < 4.3.9-150400.3.15.5
- (no CPE)range: < 4.3.12-150400.3.108.2
- (no CPE)range: < 4.3.12-150400.3.82.3
- (no CPE)range: < 1.7.13-0.150400.4.12.4
- (no CPE)range: < 4.3.27-150400.3.36.5
- (no CPE)range: < 4.3.27-150400.3.36.5
- (no CPE)range: < 4.3.28-150400.3.41.7
- (no CPE)range: < 4.3.28-150400.3.41.7
- (no CPE)range: < 4.3.23-150400.3.28.5
- (no CPE)range: < 4.3.23-150400.3.28.5
- (no CPE)range: < 4.3.19-150400.3.27.5
- (no CPE)range: < 4.3.19-150400.3.27.5
- (no CPE)range: < 4.3.13-150400.3.15.5
- (no CPE)range: < 4.3.73-150400.3.79.1
- (no CPE)range: < 4.3.38-150400.3.42.6
- (no CPE)range: < 4.3.38-150400.3.42.6
- (no CPE)range: < 0.37-150400.3.22.4
- (no CPE)range: < 4.3.11-150400.3.21.4
- (no CPE)range: < 4.3.35-150400.3.48.6
- (no CPE)range: < 4.3-150400.9.56.4
- (no CPE)range: < 4.3.25-150400.3.39.5
- (no CPE)range: < 4.3.41-150400.3.47.6
- (no CPE)range: < 4.3.17-150400.3.25.4
- (no CPE)range: < 4.3.10-150400.3.18.4
- (no CPE)range: < 4.3.10-150400.3.18.4
- (no CPE)range: < 4.3.10-150400.3.15.6
Patches
Vulnerability mechanics
References
5News mentions
0No linked articles in our index yet.