CVE-2019-18848 : The json-jwt gem before 1.11.0 for Ruby lacks an element count during the splitt

The json-jwt gem before 1.11.0 for Ruby lacks an element count during the splitting of a JWE string.

Published 2019-11-12 15:15:11

Updated 2022-05-03 14:28:18

Source MITRE

View at NVD, CVE.org

Vulnerability category: BypassGain privilege

Products affected by CVE-2019-18848

Debian » Debian Linux » Version: 9.0
cpe:2.3:o:debian:debian_linux:9.0:*:*:*:*:*:*:*
Matching versions
Json-jwt Project » Json-jwt » For Ruby
Versions before (<) 1.11.0
cpe:2.3:a:json-jwt_project:json-jwt:*:*:*:*:*:ruby:*:*
Matching versions

EPSS FAQ

0.48%

Probability of exploitation activity in the next 30 days EPSS Score History

~ 64 %

Percentile, the proportion of vulnerabilities that are scored at or less

Base Score	Base Severity	CVSS Vector	Exploitability Score	Impact Score	Score Source
5.0	MEDIUM	AV:N/AC:L/Au:N/C:N/I:P/A:N	10.0	2.9	NIST
Access Vector: Network Access Complexity: Low Authentication: None Confidentiality Impact: None Integrity Impact: Partial Availability Impact: None
7.5	HIGH	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N	3.9	3.6	NIST
Attack Vector: Network Attack Complexity: Low Privileges Required: None User Interaction: None Scope: Unchanged Confidentiality: None Integrity: High Availability: None

CWE-287 Improper Authentication

When an actor claims to have a given identity, the product does not prove or insufficiently proves that the claim is correct.

Assigned by: nvd@nist.gov (Primary)

https://github.com/nov/json-jwt/commit/ada16e772906efdd035e3df49cb2ae372f0f948a

explicitly specifying number of elements when splitting JWE string · nov/json-jwt@ada16e7 · GitHub
Patch
https://github.com/nov/json-jwt/compare/v1.10.2...v1.11.0

Comparing v1.10.2...v1.11.0 · nov/json-jwt · GitHub
Patch
https://lists.debian.org/debian-lts-announce/2020/10/msg00001.html

[SECURITY] [DLA 2390-1] ruby-json-jwt security update
Mailing List;Third Party Advisory

Jump to