{ "dataType": "CVE_RECORD", "dataVersion": "5.2", "cveMetadata": { "cveId": "CVE-2026-4598", "assignerOrgId": "bae035ff-b466-4ff4-94d0-fc9efd9e1730", "state": "PUBLISHED", "assignerShortName": "snyk", "dateReserved": "2026-03-22T16:25:51.590Z", "datePublished": "2026-03-23T05:00:11.571Z", "dateUpdated": "2026-07-07T15:25:17.136Z" }, "containers": { "cna": { "metrics": [ { "cvssV3_1": { "version": "3.1", "attackVector": "NETWORK", "attackComplexity": "LOW", "exploitCodeMaturity": "PROOF_OF_CONCEPT", "privilegesRequired": "NONE", "userInteraction": "NONE", "scope": "UNCHANGED", "confidentialityImpact": "NONE", "integrityImpact": "NONE", "availabilityImpact": "HIGH", "baseScore": 7.5, "baseSeverity": "HIGH", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H/E:P" }, "cvssV4_0": { "version": "4.0", "attackVector": "NETWORK", "attackComplexity": "LOW", "attackRequirements": "NONE", "exploitMaturity": "PROOF_OF_CONCEPT", "privilegesRequired": "NONE", "userInteraction": "NONE", "vulnConfidentialityImpact": "NONE", "vulnIntegrityImpact": "NONE", "vulnAvailabilityImpact": "HIGH", "subConfidentialityImpact": "NONE", "subIntegrityImpact": "NONE", "subAvailabilityImpact": "NONE", "baseScore": 8.7, "baseSeverity": "HIGH", "vectorString": "CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:P" } } ], "credits": [ { "value": "Kr0emer", "lang": "en" } ], "problemTypes": [ { "descriptions": [ { "cweId": "CWE-835", "description": "Infinite loop", "lang": "en" } ] } ], "providerMetadata": { "orgId": "bae035ff-b466-4ff4-94d0-fc9efd9e1730", "shortName": "snyk", "dateUpdated": "2026-07-07T15:25:17.136Z" }, "descriptions": [ { "value": "Versions of the package jsrsasign before 11.1.1 are vulnerable to Infinite loop via the bnModInverse function in ext/jsbn2.js when the BigInteger.modInverse implementation receives zero or negative inputs, allowing an attacker to hang the process permanently by supplying such crafted values (e.g., modInverse(0, m) or modInverse(-1, m)).", "lang": "en" } ], "references": [ { "url": "https://security.snyk.io/vuln/SNYK-JS-JSRSASIGN-15370938" }, { "url": "https://security.snyk.io/vuln/SNYK-JAVA-ORGWEBJARSNPM-15812263" }, { "url": "https://gist.github.com/Kr0emer/a1bf5cd4547cc630d2dcc5e761de8264" }, { "url": "https://github.com/kjur/jsrsasign/pull/648" }, { "url": "https://github.com/kjur/jsrsasign/commit/ca5b027240287a1e71fe63019fc4400332594323" } ], "affected": [ { "product": "jsrsasign", "versions": [ { "version": "0", "lessThan": "11.1.1", "status": "affected", "versionType": "semver" } ], "vendor": "n/a" }, { "product": "org.webjars.npm:jsrsasign", "versions": [ { "version": "0", "lessThan": "*", "status": "affected", "versionType": "semver" } ], "vendor": "n/a" } ] }, "adp": [ { "metrics": [ { "other": { "type": "ssvc", "content": { "timestamp": "2026-03-23T14:37:02.606788Z", "id": "CVE-2026-4598", "options": [ { "Exploitation": "poc" }, { "Automatable": "yes" }, { "Technical Impact": "partial" } ], "role": "CISA Coordinator", "version": "2.0.3" } } } ], "title": "CISA ADP Vulnrichment", "providerMetadata": { "orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0", "shortName": "CISA-ADP", "dateUpdated": "2026-03-23T14:37:09.505Z" } }, { "affected": [ { "cpes": [ "cpe:/a:redhat:migration_toolkit_virtualization:2.10::el9" ], "defaultStatus": "affected", "product": "Migration Toolkit for Virtualization 2.1", "vendor": "Red Hat" }, { "cpes": [ "cpe:/a:redhat:migration_toolkit_virtualization:2.9::el9" ], "defaultStatus": "affected", "product": "Migration Toolkit for Virtualization 2.9", "vendor": "Red Hat" }, { "cpes": [ "cpe:/a:redhat:quay:3.10::el8" ], "defaultStatus": "affected", "product": "Red Hat Quay 3.10", "vendor": "Red Hat" }, { "cpes": [ "cpe:/a:redhat:quay:3.12::el8" ], "defaultStatus": "affected", "product": "Red Hat Quay 3.12", "vendor": "Red Hat" }, { "cpes": [ "cpe:/a:redhat:quay:3.15::el8" ], "defaultStatus": "affected", "product": "Red Hat Quay 3.15", "vendor": "Red Hat" }, { "cpes": [ "cpe:/a:redhat:quay:3.16::el9" ], "defaultStatus": "affected", "product": "Red Hat Quay 3.16", "vendor": "Red Hat" }, { "cpes": [ "cpe:/a:redhat:quay:3.9::el8" ], "defaultStatus": "affected", "product": "Red Hat Quay 3.9", "vendor": "Red Hat" } ], "datePublic": "2026-03-23T05:00:11.571Z", "descriptions": [ { "lang": "en", "value": "A flaw was found in jsrsasign. A remote attacker could exploit this vulnerability by providing specially crafted zero or negative inputs to the bnModInverse function within the BigInteger.modInverse implementation. This could lead to an infinite loop, causing a permanent denial of service (DoS) by hanging the process." } ], "metrics": [ { "other": { "content": { "namespace": "https://access.redhat.com/security/updates/classification/", "value": "Important" }, "type": "Red Hat severity rating" } }, { "cvssV3_1": { "attackComplexity": "LOW", "attackVector": "NETWORK", "availabilityImpact": "HIGH", "baseScore": 7.5, "baseSeverity": "HIGH", "confidentialityImpact": "NONE", "integrityImpact": "NONE", "privilegesRequired": "NONE", "scope": "UNCHANGED", "userInteraction": "NONE", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H", "version": "3.1" }, "format": "CVSS" } ], "problemTypes": [ { "descriptions": [ { "cweId": "CWE-1287", "description": "Improper Validation of Specified Type of Input", "lang": "en", "type": "CWE" } ] } ], "references": [ { "tags": [ "vdb-entry", "x_refsource_REDHAT" ], "url": "https://access.redhat.com/security/cve/CVE-2026-4598" }, { "name": "RHBZ#2450210", "tags": [ "issue-tracking", "x_refsource_REDHAT" ], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2450210" }, { "tags": [ "x_sadp-csaf-vex" ], "url": "https://security.access.redhat.com/data/csaf/v2/vex/2026/cve-2026-4598.json" }, { "tags": [ "vendor-advisory", "x_refsource_REDHAT" ], "url": "https://access.redhat.com/errata/RHSA-2026:19409" }, { "tags": [ "vendor-advisory", "x_refsource_REDHAT" ], "url": "https://access.redhat.com/errata/RHSA-2026:19410" }, { "tags": [ "vendor-advisory", "x_refsource_REDHAT" ], "url": "https://access.redhat.com/errata/RHSA-2026:22840" }, { "tags": [ "vendor-advisory", "x_refsource_REDHAT" ], "url": "https://access.redhat.com/errata/RHSA-2026:6720" }, { "tags": [ "vendor-advisory", "x_refsource_REDHAT" ], "url": "https://access.redhat.com/errata/RHSA-2026:6568" }, { "tags": [ "vendor-advisory", "x_refsource_REDHAT" ], "url": "https://access.redhat.com/errata/RHSA-2026:19375" }, { "tags": [ "vendor-advisory", "x_refsource_REDHAT" ], "url": "https://access.redhat.com/errata/RHSA-2026:23361" } ], "solutions": [ { "lang": "en", "value": "RHSA-2026:19409: Migration Toolkit for Virtualization 2.1" }, { "lang": "en", "value": "RHSA-2026:19410: Migration Toolkit for Virtualization 2.9" }, { "lang": "en", "value": "RHSA-2026:22840: Red Hat Quay 3.10" }, { "lang": "en", "value": "RHSA-2026:6720: Red Hat Quay 3.12" }, { "lang": "en", "value": "RHSA-2026:6568: Red Hat Quay 3.15" }, { "lang": "en", "value": "RHSA-2026:19375: Red Hat Quay 3.16" }, { "lang": "en", "value": "RHSA-2026:23361: Red Hat Quay 3.9" } ], "timeline": [ { "lang": "en", "time": "2026-03-23T06:01:47.891Z", "value": "Reported to Red Hat." }, { "lang": "en", "time": "2026-03-23T05:00:11.571Z", "value": "Made public." } ], "title": "jsrsasign: jsrsasign: Denial of Service via infinite loop in bnModInverse function with crafted inputs", "workarounds": [ { "lang": "en", "value": "Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base, or stability." } ], "x_adpType": "supplier", "x_generator": { "engine": "sadp-cli 1.0.0" }, "providerMetadata": { "orgId": "0b0ca135-0b70-47e7-9f44-1890c2a1c46c", "shortName": "redhat-SADP", "dateUpdated": "2026-07-01T12:04:59.959Z" } } ] } }