Kanii

**Name of the Vulnerable Software and Affected Versions** jose4j versions prior to 0.9.3 **Description** The issue is related to the use of an algorithm that provides insufficient entropy. This allows attackers to set a low iteration count of 1000 or less, potentially enabling them to bypass security restrictions. **Recommendations** For versions prior to 0.9.3, update to version 0.9.3 or later to resolve the issue. As a temporary workaround, consider increasing the PBES2 iteration count to a value greater than 1000 to minimize the risk of exploitation.