Логотип exploitDog
Консоль
Логотип exploitDog

exploitDog

redhat логотип

CVE-2022-23540

Опубликовано: 22 дек. 2022
Источник: redhat
CVSS3: 6.4
EPSS Низкий

Описание

In versions <=8.5.1 of jsonwebtoken library, lack of algorithm definition in the jwt.verify() function can lead to signature validation bypass due to defaulting to the none algorithm for signature verification. Users are affected if you do not specify algorithms in the jwt.verify() function. This issue has been fixed, please update to version 9.0.0 which removes the default support for the none algorithm in the jwt.verify() method. There will be no impact, if you update to version 9.0.0 and you don’t need to allow for the none algorithm. If you need 'none' algorithm, you have to explicitly specify that in jwt.verify() options.

A flaw was found in the jsonwebtoken library. In affected versions of the jsonwebtoken library, lack of algorithm definition and a falsy secret or key in the jwt.verify() function may lead to signature validation bypass due to defaulting to the none algorithm for signature verification.

Затронутые пакеты

ПлатформаПакетСостояниеРекомендацияРелиз
Red Hat OpenShift Container Platform 4openshift4/ose-consoleAffected
Red Hat Openshift Container Storage 4ocs4/mcg-core-rhel8Out of support scope
RHODF-4.13-RHEL-9odf4/mcg-core-rhel9FixedRHSA-2023:374221.06.2023

Показывать по

Ссылки на источники

Дополнительная информация

Статус:

Moderate
Дефект:
CWE-327
https://bugzilla.redhat.com/show_bug.cgi?id=2169378jsonwebtoken: Insecure default algorithm in jwt.verify() could lead to signature validation bypass

EPSS

Процентиль: 3%
0.00017
Низкий

6.4 Medium

CVSS3

Связанные уязвимости

nvd логотип

CVE-2022-23540

CVSS3: 6.4
nvd
около 3 лет назад

In versions `<=8.5.1` of `jsonwebtoken` library, lack of algorithm definition in the `jwt.verify()` function can lead to signature validation bypass due to defaulting to the `none` algorithm for signature verification. Users are affected if you do not specify algorithms in the `jwt.verify()` function. This issue has been fixed, please update to version 9.0.0 which removes the default support for the none algorithm in the `jwt.verify()` method. There will be no impact, if you update to version 9.0.0 and you don’t need to allow for the `none` algorithm. If you need 'none' algorithm, you have to explicitly specify that in `jwt.verify()` options.

github логотип

GHSA-qwph-4952-7xr6

CVSS3: 6.4
github
около 3 лет назад

jsonwebtoken vulnerable to signature validation bypass due to insecure default algorithm in jwt.verify()

EPSS

Процентиль: 3%
0.00017
Низкий

6.4 Medium

CVSS3