CVE-2016-5431 : The PHP JOSE Library by Gree Inc. before version 2.2.1 is vulnerable to key conf

The PHP JOSE Library by Gree Inc. before version 2.2.1 is vulnerable to key confusion/algorithm substitution in the JWS component resulting in bypassing the signature verification via crafted tokens.

Published 2019-08-07 15:15:12

Updated 2023-03-03 15:53:44

Source Red Hat, Inc.

View at NVD, CVE.org

Products affected by CVE-2016-5431

Php Jose Project » Php Jose
Versions before (<) 2.2.1
cpe:2.3:a:php_jose_project:php_jose:*:*:*:*:*:*:*:*
Matching versions

Exploit prediction scoring system (EPSS) score for CVE-2016-5431

EPSS FAQ

0.10%

Probability of exploitation activity in the next 30 days EPSS Score History

~ 25 %

Percentile, the proportion of vulnerabilities that are scored at or less

CVSS scores for CVE-2016-5431

Base Score	Base Severity	CVSS Vector	Exploitability Score	Impact Score	Score Source
5.0	MEDIUM	AV:N/AC:L/Au:N/C:N/I:P/A:N	10.0	2.9	NIST
Access Vector: Network Access Complexity: Low Authentication: None Confidentiality Impact: None Integrity Impact: Partial Availability Impact: None
7.5	HIGH	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N	3.9	3.6	NIST
Attack Vector: Network Attack Complexity: Low Privileges Required: None User Interaction: None Scope: Unchanged Confidentiality: None Integrity: High Availability: None

CWE ids for CVE-2016-5431

CWE-327 Use of a Broken or Risky Cryptographic Algorithm

The product uses a broken or risky cryptographic algorithm or protocol.
Assigned by:
- nvd@nist.gov (Primary)
- secalert@redhat.com (Secondary)

References for CVE-2016-5431

https://github.com/nov/jose-php/commit/1cce55e27adf0274193eb1cd74b927a398a3df4b

explicit alg check & secure hash comparison · nov/jose-php@1cce55e · GitHub
Patch

Jump to

Vulnerability Details : CVE-2016-5431

Products affected by CVE-2016-5431

Exploit prediction scoring system (EPSS) score for CVE-2016-5431

CVSS scores for CVE-2016-5431

CWE ids for CVE-2016-5431

References for CVE-2016-5431