PT-2026-41315 · Libjwt · Libjwt
Published
2026-05-15
·
Updated
2026-05-20
·
CVE-2026-44699
CVSS v4.0
9.1
Critical
| Vector | AV:N/AC:L/AT:P/PR:N/UI:N/VC:H/VI:H/VA:N/SC:N/SI:N/SA:N |
Name of the Vulnerable Software and Affected Versions
LibJWT versions 3.0.0 through 3.3.2
Description
LibJWT accepts an RSA JSON Web Key (JWK) lacking an
alg parameter as the verification key for HS256, HS384, or HS512 tokens. When using the OpenSSL backend, this results in HMAC verification executing with a zero-length key, enabling an attacker to forge valid JSON Web Tokens (JWT) without possessing a secret or RSA private key. This is an algorithm-confusion authentication bypass that impacts applications loading RSA keys from JWKS where the alg parameter is omitted and the verification algorithm is selected based on the JWT header, such as within a kid lookup callback.Recommendations
Update LibJWT to version 3.3.3.
Exploit
Fix
Improper Verification of Cryptographic Signature
Use of a Broken Cryptographic Algorithm
Found an issue in the description? Have something to add? Feel free to write us 👾
Related Identifiers
Affected Products
Libjwt