Loading HuntDB...
Hunt
Vulnerability Intelligence by wss.sh
Home Daily Briefings High Impact CVEs Recent Exploits KEV Catalog GitHub Advisories Latest Updates Security News
Sign In Sign Up

CVE-2015-9235

UNKNOWN
Published 2018-05-29T20:00:00Z
Actions:

Expert Analysis

Professional remediation guidance

Get tailored security recommendations from our analyst team for CVE-2015-9235. We'll provide specific mitigation strategies based on your environment and risk profile.

No CVSS data available

Description

In jsonwebtoken node module before 4.2.2 it is possible for an attacker to bypass verification when a token digitally signed with an asymmetric key (RS/ES family) of algorithms but instead the attacker send a token digitally signed with a symmetric algorithm (HS* family).

Available Exploits

No exploits available for this CVE.

Related News

No news articles found for this CVE.

Affected Products

HackerOne

jsonwebtoken node module

Affected Versions:

<4.2.2

GitHub Security Advisories

Community-driven vulnerability intelligence from GitHub

✓ GitHub Reviewed CRITICAL

Verification Bypass in jsonwebtoken

GHSA-c7hr-j4mj-j2w6

Advisory Details

Versions 4.2.1 and earlier of `jsonwebtoken` are affected by a verification bypass vulnerability. This is a result of weak validation of the JWT algorithm type, occuring when an attacker is allowed to arbitrarily specify the JWT algorithm. ## Recommendation Update to version 4.2.2 or later.

Affected Packages

npm jsonwebtoken
ECOSYSTEM: ≥0 <4.2.2

CVSS Scoring

CVSS Score

9.0

References

ADVISORY https://nvd.nist.gov/vuln/detail/CVE-2015-9235
WEB https://github.com/auth0/node-jsonwebtoken/commit/1bb584bc382295eeb7ee8c4452a673a77a68b687
WEB https://auth0.com/blog/2015/03/31/critical-vulnerabilities-in-json-web-token-libraries
ADVISORY https://github.com/advisories/GHSA-c7hr-j4mj-j2w6
WEB https://www.npmjs.com/advisories/17
WEB https://www.timmclean.net/2015/02/25/jwt-alg-none.html

Advisory provided by GitHub Security Advisory Database. Published: October 9, 2018, Modified: August 31, 2020

References

https://nodesecurity.io/advisories/17
https://github.com/auth0/node-jsonwebtoken/commit/1bb584bc382295eeb7ee8c4452a673a77a68b687
https://auth0.com/blog/2015/03/31/critical-vulnerabilities-in-json-web-token-libraries/
https://www.timmclean.net/2015/02/25/jwt-alg-none.html
Published: 2018-05-29T20:00:00Z
Last Modified: 2024-09-16T23:05:54.010Z
Copied to clipboard!