CVE-2026-4601

Published: Mar 23, 2026 Last Modified: Mar 23, 2026

ExploitDB:

Other exploit source:

Google Dorks:

CRITICAL 9,4

Source: [email protected]

Attack Vector: network

Attack Complexity: high

Privileges Required: none

User Interaction: none

Confidentiality: N/A

Integrity: N/A

Availability: N/A

HIGH 8,7

Source: [email protected]

Attack Vector: network

Attack Complexity: high

Privileges Required: none

User Interaction: none

Scope: changed

Confidentiality: high

Integrity: high

Availability: none

Description

AI Translation Available

Versions of the package jsrsasign before 11.1.1 are vulnerable to Missing Cryptographic Step via the KJUR.crypto.DSA.signWithMessageHash process in the DSA signing implementation. An attacker can recover the private key by forcing r or s to be zero, so the library emits an invalid signature without retrying, and then solves for x from the resulting signature.

325

Missing Cryptographic Step

Draft

Abstraction: Base Structure: Simple

Common Consequences

Security Scopes Affected:

Access Control Confidentiality Integrity Accountability Non-Repudiation

Potential Impacts:

Bypass Protection Mechanism Read Application Data Modify Application Data Hide Activities

Applicable Platforms

All platforms may be affected

View CWE Details

https://gist.github.com/Kr0emer/93789fe6efe5519db9692d4ad1d…

https://gist.github.com/Kr0emer/93789fe6efe5519db9692d4ad1dad586

https://github.com/kjur/jsrsasign/commit/0710e392ec35de697c…

https://github.com/kjur/jsrsasign/commit/0710e392ec35de697ce11e4219c988ba2b5fe0…

https://github.com/kjur/jsrsasign/pull/645

https://github.com/kjur/jsrsasign/pull/645

https://security.snyk.io/vuln/SNYK-JS-JSRSASIGN-15370941

https://security.snyk.io/vuln/SNYK-JS-JSRSASIGN-15370941