CVE-2026-4599

Summary

Versions of the package jsrsasign from 7.0.0 and before 11.1.1 are vulnerable to Incomplete Comparison with Missing Factors via the getRandomBigIntegerZeroToMax and getRandomBigIntegerMinToMax functions in src/crypto-1.1.js; an attacker can recover the private key by exploiting the incorrect compareTo checks that accept out-of-range candidates and thus bias DSA nonces during signature generation.

Affected Software

VendorProductVersion RangeStatus
n/ajsrsasign7.0.0 < 11.1.1affected
n/aorg.webjars.npm:jsrsasign8.0.12 < *affected

Weaknesses

  • CWE-1023: Incomplete Comparison with Missing Factors

ADP Enrichment

CISA ADP Vulnrichment

  • SSVC:
  • Exploitation: none
    • Automatable: yes
    • Technical Impact: total

jsrsasign: jsrsasign: Private key recovery via incomplete comparison checks biasing DSA nonces

Additional References

References