Lucene search

Veracode Vulnerability DatabaseVERACODE:44323

HistoryNov 20, 2023 - 10:39 a.m.

Json Web Token (JWT) Bypass

2023-11-2010:39:00

Veracode Vulnerability Database

sca.analysiscenter.veracode.com

json web token

jwt bypass

insecure mechanism

authentication bypass

hs256 algorithm

vulnerability

signature verification

library trust

7.5 High

CVSS3

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

NONE

Integrity Impact

HIGH

Availability Impact

NONE

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N

7.2 High

AI Score

Confidence

High

0.0005 Low

EPSS

Percentile

18.0%

JSON

json-web-token is vulnerable to Json Web Token (JWT) Bypass. The vulnerability is due to an insecure mechanism used while verifying the signature of a JWT. The library blindly trusts the algorithm listed in the token without further verification. An attacker can forge a token using the HS256 algorithm, resulting in an authentication bypass.

CPENameOperatorVersion
json-web-tokenle3.2.0
json-web-tokenle3.2.0

CPE	Name	Operator	Version
	json-web-token	le	3.2.0
	json-web-token	le	3.2.0

References

github.com/advisories/GHSA-4xw9-cx39-r355

github.com/joaquimserafim/json-web-token/blob/acf6a462471e1b14187eb77414e9161b8b7bff7e/index.js#L86

github.com/joaquimserafim/json-web-token/security/advisories/GHSA-4xw9-cx39-r355

7.5 High

CVSS3

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

NONE

Integrity Impact

HIGH

Availability Impact

NONE

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N

7.2 High

AI Score

Confidence

High

0.0005 Low

EPSS

Percentile

18.0%

JSON

Related for VERACODE:44323