CVE-2016-10555
Get alerts for future matching vulnerabilitiesLog in to subscribe
I. Basic Information for CVE-2016-10555
Vulnerability Information
Have questions about the vulnerability? See if Shenlong's analysis helps!
View Shenlong Deep Dive ↗ Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Source: NVD (National Vulnerability Database)
Vulnerability Description
Since "algorithm" isn't enforced in jwt.decode()in jwt-simple 0.3.0 and earlier, a malicious user could choose what algorithm is sent sent to the server. If the server is expecting RSA but is sent HMAC-SHA with RSA's public key, the server will think the public key is actually an HMAC private key. This could be used to forge any data an attacker wants.
Source: NVD (National Vulnerability Database)
CVSS Information
N/A
Source: NVD (National Vulnerability Database)
Vulnerability Type
输入验证不恰当
Source: NVD (National Vulnerability Database)
Vulnerability Title
jwt-simple 安全漏洞
Source: CNNVD (China National Vulnerability Database)
Vulnerability Description
jwt-simple是一个基于Node.js的JWT(JSON Web Token)编码和解码模块。 jwt-simple 0.3.0及之前版本中存在安全漏洞。攻击者可通过选择发送到的服务器的算法利用该漏洞伪造任意数据。
Source: CNNVD (China National Vulnerability Database)
CVSS Information
N/A
Source: CNNVD (China National Vulnerability Database)
Vulnerability Type
N/A
Source: CNNVD (China National Vulnerability Database)
Shenlong Deep Dive — AI Deep Analysis
10-question deep dive: root cause, exploitation, mitigation, urgency. Read summary free, full version requires login.
Affected Products
| Vendor | Product | Affected Versions | CPE | Subscribe |
|---|---|---|---|---|
| HackerOne | jwt-simple node module | <=0.3.0 | - |
II. Public POCs for CVE-2016-10555
| # | POC Description | Source Link | Shenlong Link |
|---|---|---|---|
| 1 | Exploiting the CVE-2016-10555 | https://github.com/thepcn3rd/jwtToken-CVE-2016-10555 | POC Details |
| 2 | Change the algorithm RS256(asymmetric) to HS256(symmetric) - POC (CVE-2016-10555) | https://github.com/CircuitSoul/poc-cve-2016-10555 | POC Details |
| 3 | CVE-2016-10555 PoC code | https://github.com/scent2d/PoC-CVE-2016-10555 | POC Details |
| 4 | 针对JWT渗透开发的漏洞验证/密钥爆破工具,针对CVE-2015-9235/未验证签名攻击/CVE-2016-10555/CVE-2018-0114/CVE-2020-28042的结果生成用于FUZZ,也可使用字典/字符枚举(包括JJWT)的方式进行爆破 | https://github.com/z-bool/Venom-JWT | POC Details |
AI-Generated POCPremium
No public POC found.
Login to generate AI POCIII. Intelligence Information for CVE-2016-10555
请登录查看更多情报信息。
- https://nodesecurity.io/advisories/87x_refsource_MISC
- https://github.com/hokaccha/node-jwt-simple/pull/16x_refsource_MISC
- https://nvd.nist.gov/vuln/detail/CVE-2016-10555
Same Patch Batch · HackerOne · 2018-05-31 · 50 CVEs total
| CVE-2016-10549 | Sails 安全漏洞 | |
| CVE-2016-10560 | galenframework-cli 安全漏洞 | |
| CVE-2016-10564 | apk-parser 安全漏洞 | |
| CVE-2016-10565 | operadriver 安全漏洞 | |
| CVE-2016-10569 | embedza 安全漏洞 | |
| CVE-2016-10571 | bkjs-wand 安全漏洞 | |
| CVE-2016-10572 | mongodb-instance 安全漏洞 | |
| CVE-2016-10563 | go-ipfs-deps模块安全漏洞 | |
| CVE-2016-10552 | igniteui 安全漏洞 | |
| CVE-2016-10550 | sequalize SQL注入漏洞 | |
| CVE-2016-10553 | sequalize SQL注入漏洞 | |
| CVE-2016-10548 | reduce-css-calc node模块安全漏洞 | |
| CVE-2016-10547 | Nunjucks 安全漏洞 | |
| CVE-2016-10546 | PouchDB 安全漏洞 | |
| CVE-2016-10544 | uws 安全漏洞 | |
| CVE-2016-10543 | call 安全漏洞 | |
| CVE-2016-10542 | ws 安全漏洞 | |
| CVE-2016-10541 | Thshell-quote 安全漏洞 | |
| CVE-2016-10540 | Minimatch 安全漏洞 | |
| CVE-2016-10539 | negotiator 安全漏洞 |
Showing top 20 of 50 CVEs. View all on vendor page → →
IV. Related Vulnerabilities
Same weakness: CWE-20
V. Comments for CVE-2016-10555
No comments yet