Vulnerability Description
ServiceStack before 5.9.2 mishandles JWT signature verification unless an application has a custom ValidateToken function that establishes a valid minimum length for a signature.
CVSS Score
5.3
MEDIUM
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Servicestack | Servicestack | < 5.9.2 |
Related Weaknesses (CWE)
References
- https://forums.servicestack.net/t/servicestack-v5-9-2-released/8850Release NotesVendor Advisory
- https://github.com/ServiceStack/ServiceStack/commit/540d4060e877a03ae95343c1a856PatchThird Party Advisory
- https://www.shielder.it/advisories/servicestack-jwt-signature-verification-bypasExploitThird Party Advisory
- https://www.shielder.it/blog/2020/11/re-discovering-a-jwt-authentication-bypass-ExploitThird Party Advisory
- https://forums.servicestack.net/t/servicestack-v5-9-2-released/8850Release NotesVendor Advisory
- https://github.com/ServiceStack/ServiceStack/commit/540d4060e877a03ae95343c1a856PatchThird Party Advisory
- https://www.shielder.it/advisories/servicestack-jwt-signature-verification-bypasExploitThird Party Advisory
- https://www.shielder.it/blog/2020/11/re-discovering-a-jwt-authentication-bypass-ExploitThird Party Advisory
FAQ
What is CVE-2020-28042?
CVE-2020-28042 is a vulnerability with a CVSS score of 5.3 (MEDIUM). ServiceStack before 5.9.2 mishandles JWT signature verification unless an application has a custom ValidateToken function that establishes a valid minimum length for a signature.
How severe is CVE-2020-28042?
CVE-2020-28042 has been rated MEDIUM with a CVSS base score of 5.3/10. Review the CVSS metrics above for detailed severity breakdown.
Is there a patch for CVE-2020-28042?
Check the references section above for vendor advisories and patch information. Affected products include: Servicestack Servicestack.