HIGH 7.5 PyPI
GHSA-752w-5fwx-jx9f · CVE-2026-32597, PYSEC-2026-120 PyJWT accepts unknown `crit` header extensions
Modified: 6/8/2026
package
PyPI / pyjwt
pkg:pypi/pyjwt
LOW 2.2 PyPI
GHSA-75c5-xw7c-p5pm · CVE-2024-53861 PyJWT Issuer field partial matches allowed
Modified: 2/4/2026
HIGH 7.4 PyPI
GHSA-ffqj-6fqr-9h24 · CVE-2022-29217, PYSEC-2022-202 Key confusion through non-blocklisted public key formats
Modified: 10/15/2024
HIGH 7.5 PyPI
GHSA-r9jw-mwhq-wp62 · CVE-2017-11424, PYSEC-2017-24 PyJWT vulnerable to key confusion attacks
Modified: 12/5/2024
— PyPI
PYSEC-2017-24 · CVE-2017-11424, GHSA-r9jw-mwhq-wp62 Modified: 11/8/2023
HIGH 7.5 PyPI
PYSEC-2026-120 · CVE-2026-32597, GHSA-752w-5fwx-jx9f Modified: 5/20/2026
MEDIUM 4.2 PyPI
PYSEC-2026-175 · CVE-2026-48522, GHSA-993g-76c3-p5m4 Modified: 6/2/2026
MEDIUM 5.4 PyPI
PYSEC-2026-176 · CVE-2026-48523, GHSA-jq35-7prp-9v3f Modified: 6/2/2026
LOW 3.7 PyPI
PYSEC-2026-177 · CVE-2026-48524, GHSA-fhv5-28vv-h8m8 Modified: 6/2/2026
MEDIUM 5.3 PyPI
PYSEC-2026-178 · CVE-2026-48525, GHSA-w7vc-732c-9m39 Modified: 6/2/2026
HIGH 7.4 PyPI
PYSEC-2026-179 · CVE-2026-48526, GHSA-xgmm-8j9v-c9wx Modified: 6/2/2026
— PyPI
PYSEC-2022-202 · CVE-2022-29217, GHSA-ffqj-6fqr-9h24 Modified: 11/8/2023
HIGH 7.0 PyPI
PYSEC-2025-183 · CVE-2025-45768 Modified: 5/21/2026