Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
ibmIBMA27C845F6AC8103EC337C9B824FBBF79247FB5530FDE0CA36FC48BED18706684
HistoryMar 27, 2023 - 8:08 p.m.

Security Bulletin: Maximo Application Suite uses jsonwebtoken package which is vulnerable to CVE-2022-23541, CVE-2022-23539, CVE-2022-23529 and CVE-2022-23540

2023-03-2720:08:12
www.ibm.com
32
maximo application suite
jsonwebtoken
vulnerabilities
cve-2022-23541
cve-2022-23539
cve-2022-23529
cve-2022-23540
version 8.8
version 8.9
fix available

8.1 High

CVSS3

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

LOW

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

NONE

CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:N

0.001 Low

EPSS

Percentile

34.2%

JSON

Summary

There are four vulnerabilities in jsonwebtoken-8.5.1.tgz used by IBM Maximo Application Suite.

Vulnerability Details

CVEID:CVE-2022-23541
**DESCRIPTION:**Auth0 jsonwebtoken could allow a remote authenticated attacker to bypass security restrictions, caused by an insecure implementation of key retrieval function. By sending a specially-crafted request, an attacker could exploit this vulnerability to forge Public/Private Tokens from RSA to HMAC.
CVSS Base score: 5
CVSS Temporal Score: See: https://exchange.xforce.ibmcloud.com/vulnerabilities/242966 for the current score.
CVSS Vector: (CVSS:3.0/AV:N/AC:H/PR:L/UI:N/S:U/C:L/I:L/A:L)

CVEID:CVE-2022-23539
**DESCRIPTION:**Auth0 jsonwebtoken could provide weaker than expected security, caused by an unrestricted key type issue. A remote authenticated attacker could exploit this vulnerability to allow legacy keys usage and launch further attacks on the system.
CVSS Base score: 5.9
CVSS Temporal Score: See: https://exchange.xforce.ibmcloud.com/vulnerabilities/242968 for the current score.
CVSS Vector: (CVSS:3.0/AV:N/AC:H/PR:L/UI:N/S:U/C:L/I:H/A:N)

CVEID:CVE-2022-23529
**DESCRIPTION:**Auth0 jsonwebtoken could allow a remote authenticated attacker to execute arbitrary code on the system, caused by improper input validation by the jwt.verify function. By sending a specially-crafted request using the key retrieval parameter, an attacker could exploit this vulnerability to execute arbitrary code on the system.
CVSS Base score: 7.5
CVSS Temporal Score: See: https://exchange.xforce.ibmcloud.com/vulnerabilities/242967 for the current score.
CVSS Vector: (CVSS:3.0/AV:N/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H)

CVEID:CVE-2022-23540
**DESCRIPTION:**Auth0 jsonwebtoken could allow a remote authenticated attacker to bypass security restrictions, caused by an insecure default algorithm flaw in the jwt.verify() function. By sending a specially-crafted request, an attacker could exploit this vulnerability to bypass signature validation.
CVSS Base score: 6.4
CVSS Temporal Score: See: https://exchange.xforce.ibmcloud.com/vulnerabilities/242969 for the current score.
CVSS Vector: (CVSS:3.0/AV:N/AC:H/PR:L/UI:N/S:U/C:L/I:H/A:L)

Affected Products and Versions

Affected Product(s) Version(s)
IBM Maximo Application Suite 8.8
IBM Maximo Application Suite 8.9

Remediation/Fixes

Affected Product(s) Fix pack Version(s)
IBM Maximo Application Suite 8.8.7 or latest (available from the Catalog under Update Available)
IBM Maximo Application Suite 8.9.3 or latest (available from the Catalog under Update Available)

Workarounds and Mitigations

None

Affected configurations

Vulners
Node
ibmmaximo_application_suiteMatch8.9
CPENameOperatorVersion
ibm maximo application suiteeq8.9

Related

ibm 16
prion 3
veracode 4
cvelist 4
nvd 4
github 4
cve 4
osv 7
redhatcve 4
githubexploit 3
nessus 1
hivepro 1
thn 1
redhat 2
ibm
ibm
Security Bulletin: Multiple vulnerabilities in jsonwebtoken package affects Data Replication on Cloud Pak for Data
2023-11-07 21:50:06
Security Bulletin: IBM App Connect Enterprise and IBM Integration Bus are vulnerable to a remote attacker due to multiple jsonwebtoken CVEs
2023-01-30 10:40:47
Security Bulletin: IBM Watson Discovery Cartridge for IBM Cloud Pak for Data affected by a vulnerability in JSON Web Token
2023-02-24 13:19:16
prion
prion
Design/Logic Flaw
2022-12-22 18:15:00
Input validation
2022-12-22 19:15:00
Type confusion
2022-12-23 00:15:00
veracode
veracode
Unrestricted Key Type
2022-12-23 07:07:33
Incorrect Verification Of Tokens
2022-12-23 06:16:20
Signature Validation Bypass
2022-12-23 06:35:32
cvelist
cvelist
CVE-2022-23541 jsonwebtoken's insecure implementation of key retrieval function could lead to Forgeable Public/Private Tokens from RSA to HMAC
2022-12-22 17:52:22
CVE-2022-23539 jsonwebtoken unrestricted key type could lead to legacy keys usage
2022-12-22 23:20:47
CVE-2022-23540 jsonwebtoken vulnerable to signature validation bypass due to insecure default algorithm in jwt.verify()
2022-12-22 18:02:24
nvd
nvd
CVE-2022-23540
2022-12-22 19:15:08
CVE-2022-23539
2022-12-23 00:15:12
CVE-2022-23541
2022-12-22 18:15:09
github
github
jsonwebtoken unrestricted key type could lead to legacy keys usage
2022-12-22 03:32:22
jsonwebtoken vulnerable to signature validation bypass due to insecure default algorithm in jwt.verify()
2022-12-22 03:32:59
jsonwebtoken's insecure implementation of key retrieval function could lead to Forgeable Public/Private Tokens from RSA to HMAC
2022-12-22 03:33:19
cve
cve
CVE-2022-23539
2022-12-23 00:15:12
CVE-2022-23541
2022-12-22 18:15:09
CVE-2022-23540
2022-12-22 19:15:08
osv
osv
CVE-2022-23540
2022-12-22 19:15:08
jsonwebtoken vulnerable to signature validation bypass due to insecure default algorithm in jwt.verify()
2022-12-22 03:32:59
jsonwebtoken unrestricted key type could lead to legacy keys usage
2022-12-22 03:32:22
redhatcve
redhatcve
CVE-2022-23539
2022-12-23 08:34:49
CVE-2022-23540
2023-02-23 18:29:15
CVE-2022-23541
2023-02-23 18:59:15
githubexploit
githubexploit
Exploit for Improper Verification of Cryptographic Signature in Auth0 Jsonwebtoken
2023-01-17 10:34:10
Exploit for CVE-2022-23529
2023-01-16 02:35:54
Exploit for CVE-2022-23529
2023-01-16 02:35:54
nessus
nessus
Auth0 JsonWebtoken < 9.0.0 Arbitrary File Write (deprecated)
2023-01-13 00:00:00
hivepro
hivepro
New Vulnerability Found in the JsonWebToken Open-Source Project
2023-01-10 12:11:46
thn
thn
Severe Security Flaw Found in "jsonwebtoken" Library Used by 22,000+ Projects
2023-01-10 08:54:00
redhat
redhat
(RHSA-2023:3265) Moderate: Red Hat OpenShift Data Foundation 4.12.3 Security and Bug fix update
2023-05-23 09:15:39
(RHSA-2023:3742) Important: Red Hat OpenShift Data Foundation 4.13.0 security and bug fix update
2023-06-21 15:20:50

8.1 High

CVSS3

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

LOW

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

NONE

CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:N

0.001 Low

EPSS

Percentile

34.2%

JSON
Related for A27C845F6AC8103EC337C9B824FBBF79247FB5530FDE0CA36FC48BED18706684
ibm16prion3veracode4cvelist4nvd4github4cve4osv7redhatcve4githubexploit3nessus1hivepro1thn1redhat2