Data

Tools

Indexes

Applications

Experiments

Advisories

An open API service providing security vulnerability metadata for many open source software ecosystems.

npm

jsrsasign

npm

opensource free pure JavaScript cryptographic library supports RSA/RSAPSS/ECDSA/DSA signing/validation, ASN.1, PKCS#1/5/8 private/public key, X.509 certificate, CRL, OCSP, CMS SignedData, TimeStamp and CAdES and JSON Web Signature(JWS)/Token(JWT)/Key(JWK)

View on github.com · View on npmjs.org

Security Advisories for jsrsasign in npm

High
almost 2 years ago

Marvin Attack of RSA and RSAOAEP decryption in jsrsasign GSA_kwCzR0hTQS1yaDYzLTlxY2YtODNnZs4AA4kS

npm jsrsasign
High
over 3 years ago

JWS and JWT signature validation vulnerability with special characters GSA_kwCzR0hTQS0zZnZnLTR2Mm0tOThqZs4AAs_P

npm jsrsasign
Moderate
almost 4 years ago

Signatures are mistakenly recognized to be valid in jsrsasign MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLWg4N3EtZzJ3cC00N3Bq

npm jsrsasign
Critical
over 4 years ago

RSA signature validation vulnerability on maleable encoded message in jsrsasign MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLTI3ZmotbWM4dy1qOXdn

npm jsrsasign
Moderate
over 5 years ago

ECDSA signature vulnerability of Minerva timing attack in jsrsasign MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLWc3NTMtangzNy03eHdo

npm jsrsasign
High
over 5 years ago

ECDSA signature validation vulnerability by accepting wrong ASN.1 encoding in jsrsasign MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLXA4YzMtN3JqOC1xOTYz

npm jsrsasign
Critical
over 5 years ago

RSA PKCS#1 decryption vulnerability with prepending zeros in jsrsasign MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLXh4eHEtY2htcC02N2c0

npm jsrsasign
Critical
over 5 years ago

RSA-PSS signature validation vulnerability by prepending zeros in jsrsasign MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLXEzZ2gtNXI5OC1qNGgz

npm jsrsasign

Filter by Severity

High 3 Critical 3 Moderate 2