Skip to content

Insecure default algorithm in jwt.verify() could lead to signature validation bypass

Moderate
julienwoll published GHSA-qwph-4952-7xr6 Dec 21, 2022

Package

npm jsonwebtoken (npm)

Affected versions

<=8.5.1

Patched versions

9.0.0

Description

Overview

In versions <=8.5.1 of jsonwebtoken library, lack of algorithm definition and a falsy secret or key in the jwt.verify() function can lead to signature validation bypass due to defaulting to the none algorithm for signature verification.

Am I affected?

You will be affected if all the following are true in the jwt.verify() function:

  • a token with no signature is received
  • no algorithms are specified
  • a falsy (e.g. null, false, undefined) secret or key is passed

How do I fix it?

Update to version 9.0.0 which removes the default support for the none algorithm in the jwt.verify() method.

Will the fix impact my users?

There will be no impact, if you update to version 9.0.0 and you don’t need to allow for the none algorithm. If you need 'none' algorithm, you have to explicitly specify that in jwt.verify() options.

Severity

Moderate

CVE ID

CVE-2022-23540

Weaknesses

No CWEs