com.nimbusds:nimbus-jose-jwt vulnerabilities

Browse known CVEs and advisories by package and ecosystem. Severity tells you the worst case. What determines real risk is whether the vulnerable code actually runs in your applications.

Get a demo

Browse by ecosystem

npmPyPIMavenGoRubyGemsCargoNuGetComposerpubSwiftGitHub Actions
CVE-IDSeverityPackage summary
CVE-2025-53864Mediumcom.nimbusds:nimbus-jose-jwt: Nimbus JOSE + JWT is vulnerable to DoS attacks when processing deeply nested JSONCVE-2023-52428Highcom.nimbusds:nimbus-jose-jwt: Denial of Service in Connect2id Nimbus JOSE+JWTCVE-2017-12973Lowcom.nimbusds:nimbus-jose-jwt: Nimbus JOSE+JWT vulnerable to padding oracle attackCVE-2017-12974Highcom.nimbusds:nimbus-jose-jwt: Improper Verification of Cryptographic Signature in Nimbus JOSE+JWTCVE-2017-12972Highcom.nimbusds:nimbus-jose-jwt: Nimbus JOSE+JWT missing overflow checkCVE-2019-17195Criticalcom.nimbusds:nimbus-jose-jwt: Improper Check for Unusual or Exceptional Conditions in Connect2id Nimbus JOSE+JWT

Stop the waste.
Protect your environment with Kodem.