VYPR

node-jws

by Auth0

Source repositories

CVEs (1)

  • CVE-2025-65945Dec 4, 2025
    risk 0.00cvss epss 0.00

    auth0/node-jws is a JSON Web Signature implementation for Node.js. In versions 3.2.2 and earlier and version 4.0.0, auth0/node-jws has an improper signature verification vulnerability when using the HS256 algorithm under specific conditions. Applications are affected when they…