Vulnerability Details CVE-2025-63811
An issue was discovered in dvsekhvalnov jose2go 1.5.0 thru 1.7.0 allowing an attacker to cause a Denial-of-Service (DoS) via crafted JSON Web Encryption (JWE) token with an exceptionally high compression ratio.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.0
EPSS Ranking 9.2%
CVSS Severity
CVSS v3 Score 7.5
Products affected by CVE-2025-63811
-
cpe:2.3:a:dvsekhvalnov:jose2go:1.5.0
-
cpe:2.3:a:dvsekhvalnov:jose2go:1.6.0