VYPR

jose-node-esm-runtime

by Panva

npm: jose-node-esm-runtime

CVEs (2)

  • CVE-2021-29446Apr 16, 2021
    risk 0.00cvss epss 0.01

    jose-node-cjs-runtime is an npm package which provides a number of cryptographic functions. In versions prior to 3.11.4 the AES_CBC_HMAC_SHA2 Algorithm (A128CBC-HS256, A192CBC-HS384, A256CBC-HS512) decryption would always execute both HMAC tag verification and CBC decryption, if…

  • CVE-2021-29445Apr 16, 2021
    risk 0.00cvss epss 0.01

    jose-node-esm-runtime is an npm package which provides a number of cryptographic functions. In versions prior to 3.11.4 the AES_CBC_HMAC_SHA2 Algorithm (A128CBC-HS256, A192CBC-HS384, A256CBC-HS512) decryption would always execute both HMAC tag verification and CBC decryption, if…