logo

Database

Lack of data validation - Type confusion In jsrsasign

Description

jsrsasign: Negative Exponent Handling Leads to Signature Verification Bypass Versions of the package jsrsasign before 11.1.1 are vulnerable to Incorrect Conversion between Numeric Types due to handling negative exponents in ext/jsbn2.js. An attacker can force the computation of incorrect modular inverses and break signature verification by calling modPow with a negative exponent.

Mitigation

Update Impact

Minimal update. May introduce new vulnerabilities or breaking changes.

Ecosystem
Package
Affected version
Patched versions

Aliases

1. CVE-2026-46022. NVD-2026-46023. OSV-2026-46024. GCVE-2026-4602

References

1. https://github.com/kjur/jsrsasign/pull/6502. https://github.com/kjur/jsrsasign/commit/5ea1c32bb2aa894b4bd29849839afe4f987281953. https://gist.github.com/Kr0emer/7ecd2be7d17419e4677315ef3758faf5

Does your application use this vulnerable software?

During the free trial, our tools assess your application, identify vulnerabilities, and provide recommendations for their remediation.