CVE-2026-4601 - Vulnerability Details

- jsrsasign: jsrsasign: Private Key Recovery via Missing Cryptographic Step in DSA Signing

Description

Versions of the package jsrsasign before 11.1.1 are vulnerable to Missing Cryptographic Step via the KJUR.crypto.DSA.signWithMessageHash process in the DSA signing implementation. An attacker can recover the private key by forcing r or s to be zero, so the library emits an invalid signature without retrying, and then solves for x from the resulting signature.

Published: 2026-03-23

Score: 9.4 Critical

EPSS: < 1% Very Low

KEV: No

Impact:

Action:

Analysis

Impact

A missing cryptographic validation step in the DSA signing routine allows an attacker to force the signature components r or s to zero. The library then emits an invalid signature and does not retry, exposing a deterministic relationship that enables the recovery of the private key by solving for x from the resulting signature. The vulnerability is therefore a severe confidentiality breach that exposes private keys used for signing.

Affected Systems

Node.js applications that use the jsrsasign library in versions prior to 11.1.1 are affected. The vulnerability applies to the jsrsasign project’s JavaScript implementation of DSA signing, and any deployment that imports that package without updating to the patched release is at risk.

Risk and Exploitability

The CVSS base score is 9.4, indicating critical severity, and the EPSS score is below 1 %, suggesting that while exploitation is possible, it is not yet widespread. The vulnerability is not listed in the CISA KEV catalog. The likely attack path involves an adversary supplying crafted message or hash data to the DSA.signWithMessageHash routine within the application; the attacker must be able to influence the input to trigger zero r or s values. The inference is that the attack requires either local code execution or the ability to supply data that reaches the signing function, but the vendor’s documentation does not provide additional constraints.

Default status is the baseline for the product, each version can override it (e.g. patched versions marked unaffected).

Vendor Product Default status Versions

n/a

jsrsasign

affected

Version	Status	Constraints
`0`	affected	< 11.1.1

Configuration 1 [-]

cpe:2.3:a:jsrsasign_project:jsrsasign:*:*:*:*:*:node.js:*:*

No data.

Vendor Product Confidence Versions

Kjur

Jsrsasign

80%

Version	Status	Scheme	Platform
`[0,11.1.1)`	affected	semver	—

Found an issue or want to improve our Enrichment? You can suggest it directly by opening an issue on our dedicated GitHub repository .

Remediation

No vendor fix or workaround currently provided.

OpenCVE Recommended Actions

Upgrade jsrsasign to version 11.1.1 or later, which restores the missing cryptographic check and prevents private key recovery.

Generated by OpenCVE AI on March 23, 2026 at 17:22 UTC.

Tracking

Sign in to view the affected projects.

Advisories

Source	ID	Title
Github GHSA	GHSA-w8q8-93cx-6h7r	jsrsasign: Missing cryptographic validation during DSA signing enables private key extraction

Attack Vector Network

Attack Complexity High

Privileges Required None

Attack Requirements None

User Interaction None

Vulnerable System Confidentiality Impact High

Vulnerable System Integrity Impact High

Vulnerable System Availability Impact None

Subsequent System Confidentiality Impact None

Subsequent System Integrity Impact High

Subsequent System Availability Impact None

Attack Vector Network

Attack Complexity High

Privileges Required None

Scope Changed

Confidentiality Impact High

Integrity Impact High

Availability Impact None

User Interaction None

No CVSS v3.0

No CVSS v2

This CVE is not in the KEV list.

The EPSS score is 0.00017.

Exploitation none

Automatable no

Technical Impact total

References

Link	Providers
https://gist.github.com/Kr0emer/93789fe6efe5519db9692d4ad1dad586
https://github.com/kjur/jsrsasign/commit/0710e392ec35de697ce11e4219c988ba2b5fe0eb
https://github.com/kjur/jsrsasign/pull/645
https://nvd.nist.gov/vuln/detail/CVE-2026-4601
https://security.snyk.io/vuln/SNYK-JS-JSRSASIGN-15370941
https://www.cve.org/CVERecord?id=CVE-2026-4601

History

Mon, 23 Mar 2026 16:15:00 +0000

Type	Values Removed	Values Added
First Time appeared		Jsrsasign Project Jsrsasign Project jsrsasign
CPEs		cpe:2.3:a:jsrsasign_project:jsrsasign::::::node.js::*
Vendors & Products		Jsrsasign Project Jsrsasign Project jsrsasign

Mon, 23 Mar 2026 15:15:00 +0000

Type	Values Removed	Values Added
Metrics		ssvc `{'options': {'Automatable': 'no', 'Exploitation': 'none', 'Technical Impact': 'total'}, 'version': '2.0.3'}`

Mon, 23 Mar 2026 12:15:00 +0000

Type	Values Removed	Values Added
Title		jsrsasign: jsrsasign: Private Key Recovery via Missing Cryptographic Step in DSA Signing
References		https://nvd.nist.gov/vuln/detail/CVE-2026-4601 https://www.cve.org/CVERecord?id=CVE-2026-4601
Metrics	threat_severity `None`	threat_severity `Important`

Mon, 23 Mar 2026 10:00:00 +0000

Type	Values Removed	Values Added
First Time appeared		Kjur Kjur jsrsasign
Vendors & Products		Kjur Kjur jsrsasign

Mon, 23 Mar 2026 05:45:00 +0000

Type	Values Removed	Values Added
Description		Versions of the package jsrsasign before 11.1.1 are vulnerable to Missing Cryptographic Step via the KJUR.crypto.DSA.signWithMessageHash process in the DSA signing implementation. An attacker can recover the private key by forcing r or s to be zero, so the library emits an invalid signature without retrying, and then solves for x from the resulting signature.
Weaknesses		CWE-325
References		https://gist.github.com/Kr0emer/93789fe6efe5519db9692d4ad1dad586 https://github.com/kjur/jsrsasign/commit/0710e392ec35de697ce11e4219c988ba2b5fe0eb https://github.com/kjur/jsrsasign/pull/645 https://security.snyk.io/vuln/SNYK-JS-JSRSASIGN-15370941
Metrics		cvssV3_1 `{'score': 8.7, 'vector': 'CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:C/C:H/I:H/A:N/E:P'}` cvssV4_0 `{'score': 9.4, 'vector': 'CVSS:4.0/AV:N/AC:H/AT:N/PR:N/UI:N/VC:H/VI:H/VA:N/SC:N/SI:H/SA:N/E:P'}`

Subscriptions

Jsrsasign Project Jsrsasign

Kjur Jsrsasign

MITRE

Status: PUBLISHED

Assigner: snyk

Published: 2026-03-23T05:00:13.312Z

Updated: 2026-03-23T14:41:10.087Z

Reserved: 2026-03-22T16:26:10.973Z

Link: CVE-2026-4601

Vulnrichment

Updated: 2026-03-23T14:41:07.056Z

NVD

Status : Analyzed

Published: 2026-03-23T06:16:21.893

Modified: 2026-03-23T16:10:01.390

Link: CVE-2026-4601

Redhat

Severity : Important

Publid Date: 2026-03-23T05:00:13Z

Links: CVE-2026-4601 - Bugzilla

OpenCVE Enrichment

Updated: 2026-03-25T14:49:48Z

Weaknesses

CWE-325

Impact

Affected Systems

Risk and Exploitability

Tracking

Attack Vector Network

Attack Complexity High

Privileges Required None

Attack Requirements None

User Interaction None

Vulnerable System Confidentiality Impact High

Vulnerable System Integrity Impact High

Vulnerable System Availability Impact None

Subsequent System Confidentiality Impact None

Subsequent System Integrity Impact High

Subsequent System Availability Impact None

Attack Vector Network

Attack Complexity High

Privileges Required None

Scope Changed

Confidentiality Impact High

Integrity Impact High

Availability Impact None

User Interaction None

Exploitation none

Automatable no

Technical Impact total

Subscriptions

JSON object

JSON object

JSON object

JSON object

JSON object