PT-2026-41315 · Libjwt · Libjwt

Published

2026-05-15

·

Updated

2026-05-20

·

CVE-2026-44699

CVSS v4.0

9.1

Critical

VectorAV:N/AC:L/AT:P/PR:N/UI:N/VC:H/VI:H/VA:N/SC:N/SI:N/SA:N
Name of the Vulnerable Software and Affected Versions LibJWT versions 3.0.0 through 3.3.2
Description LibJWT accepts an RSA JSON Web Key (JWK) lacking an alg parameter as the verification key for HS256, HS384, or HS512 tokens. When using the OpenSSL backend, this results in HMAC verification executing with a zero-length key, enabling an attacker to forge valid JSON Web Tokens (JWT) without possessing a secret or RSA private key. This is an algorithm-confusion authentication bypass that impacts applications loading RSA keys from JWKS where the alg parameter is omitted and the verification algorithm is selected based on the JWT header, such as within a kid lookup callback.
Recommendations Update LibJWT to version 3.3.3.

Exploit

Fix

Improper Verification of Cryptographic Signature

Use of a Broken Cryptographic Algorithm

Found an issue in the description? Have something to add? Feel free to write us 👾

Weakness Enumeration

Related Identifiers

CVE-2026-44699
GHSA-Q843-6Q5F-W55G

Affected Products

Libjwt