CVE-2026-48525 - Vulnerability Details

Description

PyJWT is a JSON Web Token implementation in Python. From 2.8.0 to 2.12.1, when verifying detached JWS tokens using the unencoded-payload option ("b64": false, RFC 7797), PyJWT performs Base64URL decoding of the compact-serialization payload segment before enforcing the detached-payload rules. For b64=false, PyJWT later discards that decoded payload and replaces it with the caller-provided detached_payload. In practice, this turns the middle segment into an attacker-controlled “work amplifier”: a remote client can supply an arbitrarily large Base64URL payload segment that forces CPU work + memory allocations even if the signature is invalid. This creates an unauthenticated DoS vector against any endpoint that verifies detached JWS using PyJWT. This vulnerability is fixed in 2.13.0.

Published: 2026-05-28

Score: 5.3 Medium

EPSS: n/a

KEV: No

Impact:

Action:

Analysis

Impact

PyJWT versions 2.8.0 through 2.12.1 perform Base64URL decoding of the middle payload segment of detached JSON Web Signatures even when the payload is later ignored because the token is marked "b64": false. An attacker can supply an arbitrarily large encoding in that segment, causing the library to allocate memory and perform expensive decoding work. The operation fails fast if the signature is invalid, but the required CPU and memory consumption occur before validation, leading to a denial‑of‑service condition for any user who can send requests that include such tokens. This flaw is a classic input validation weakness and is classified as CWE‑400.

Affected Systems

The affected product is the Python JSON Web Token library, PyJWT, released by jpadilla. Vulnerable releases are 2.8.0 through 2.12.1. All systems that import and use PyJWT for detached JWS verification and accept "b64": false payloads are impacted.

Risk and Exploitability

The CVSS score of 5.3 indicates moderate severity. No EPSS data is available, and the vulnerability is not listed in the CISA KEV catalog. An attacker can trigger the denial of service without authentication by sending a large Base64URL encoded segment to any endpoint that performs detached JWS verification with PyJWT. The attack does not require compromising other components; it merely exploits the library’s unchecked decoding logic.

Default status is the baseline for the product, each version can override it (e.g. patched versions marked unaffected).

Vendor Product Default status Versions

jpadilla

pyjwt

affected

Version	Status	Constraints
`>= 2.8.0, < 2.13.0`	affected	—

No data.

Vendor Product Confidence Versions

Jpadilla

Pyjwt

100%

Version	Status	Scheme	Platform
`[2.8.0,2.13.0)`	affected	semver	—

Found an issue or want to improve our Enrichment? You can suggest it directly by opening an issue on our dedicated GitHub repository .

Remediation

No vendor fix or workaround currently provided.

OpenCVE Recommended Actions

Upgrade PyJWT to version 2.13.0 or later, where the decoding step is removed for "b64": false tokens.
If an upgrade cannot be performed immediately, configure services to reject any JWS request that uses "b64": false or disable detached payload verification until the library is patched.
Implement a pre‑decode size check or limit the length of the payload segment to prevent excessive CPU and memory usage during token validation.

Generated by OpenCVE AI on May 28, 2026 at 16:37 UTC.

Tracking

Sign in to view the affected projects.

Advisories

No advisories yet.

No CVSS v4.0

Attack Vector Network

Attack Complexity Low

Privileges Required None

Scope Unchanged

Confidentiality Impact None

Integrity Impact None

Availability Impact Low

User Interaction None

No CVSS v3.0

No CVSS v2

This CVE is not in the KEV list.

No EPSS score available.

Key SSVC decision points have not yet been added.

References

Link	Providers
https://github.com/jpadilla/pyjwt/security/advisories/GHSA-w7vc-732c-9m39

History

Thu, 28 May 2026 18:00:00 +0000

Type	Values Removed	Values Added
First Time appeared		Jpadilla Jpadilla pyjwt
Vendors & Products		Jpadilla Jpadilla pyjwt

Thu, 28 May 2026 15:30:00 +0000

Type	Values Removed	Values Added
Description		PyJWT is a JSON Web Token implementation in Python. From 2.8.0 to 2.12.1, when verifying detached JWS tokens using the unencoded-payload option ("b64": false, RFC 7797), PyJWT performs Base64URL decoding of the compact-serialization payload segment before enforcing the detached-payload rules. For b64=false, PyJWT later discards that decoded payload and replaces it with the caller-provided detached_payload. In practice, this turns the middle segment into an attacker-controlled “work amplifier”: a remote client can supply an arbitrarily large Base64URL payload segment that forces CPU work + memory allocations even if the signature is invalid. This creates an unauthenticated DoS vector against any endpoint that verifies detached JWS using PyJWT. This vulnerability is fixed in 2.13.0.
Title		PyJWT: Unauthenticated DoS via unbounded Base64URL decoding of unused payload segment in b64=false detached JWS
Weaknesses		CWE-400
References		https://github.com/jpadilla/pyjwt/security/advisories/GHSA-w7vc-732c-9m39
Metrics		cvssV3_1 `{'score': 5.3, 'vector': 'CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L'}`

Subscriptions

Jpadilla Pyjwt

MITRE

Status: PUBLISHED

Assigner: GitHub_M

Published: 2026-05-28T15:11:12.483Z

Updated: 2026-05-28T15:59:19.219Z

Reserved: 2026-05-21T16:18:10.619Z

Link: CVE-2026-48525

Vulnrichment

No data.

NVD

Status : Undergoing Analysis

Published: 2026-05-28T16:16:29.533

Modified: 2026-05-28T18:03:16.223

Link: CVE-2026-48525

Redhat

No data.

OpenCVE Enrichment

Updated: 2026-05-28T17:45:22Z

Weaknesses

CWE-400

Impact

Affected Systems

Risk and Exploitability

Tracking

Attack Vector Network

Attack Complexity Low

Privileges Required None

Scope Unchanged

Confidentiality Impact None

Integrity Impact None

Availability Impact Low

User Interaction None

Subscriptions

JSON object

JSON object

JSON object

JSON object

JSON object