CNNVD-202508-714 Information

Aug 07, 2025 cve

CNNVD ID

CNNVD-202508-714

CVE-2025-45765

  • CNNVD Published: 2025-08-07

Description (Chinese)

jwt是JSON Web Token开源的一个Ruby库。 jwt v3.0.0.beta1版本存在安全漏洞,该漏洞源于存在弱加密实现。

Description (English)

Jwt is a Ruby library of the open source JSON Web Token. jwt v3.0.0.beta1 has a security loophole, which stems from weak encryption.

Hazard Level

Low

Vulnerability Type

其他

Affected Vendor

JSON Web Token

Published

2025-08-07

Last Modified

2026-02-24

References

https://gist.github.com/ZupeiNie/c621253068ce5b64911629534879e8f9 https://github.com/jwt/ruby-jwt/issues/668

Patch

https://ruby-jwt.org/

Share on: