jsrsasign is vulnerable to DoS through Infinite Loop when processing zero or negative inputs

Severity:: High

Description

Versions of the package jsrsasign before 11.1.1 are vulnerable to Infinite loop via the bnModInverse function in ext/jsbn2.js when the BigInteger.modInverse implementation receives zero or negative inputs, allowing an attacker to hang the process permanently by supplying such crafted values (e.g., modInverse(0, m) or modInverse(-1, m)).

Recommendation

Update the jsrsasign package to the latest compatible version. Followings are version details:

Affected version(s): < 11.1.1
Patched version(s): 11.1.1

References

GHSA-8g7p-jf3g-gxcp
security.snyk.io
CVE-2026-4598
CWE-835
CAPEC-310
OWASP 2021-A6

Related Issues

Mermaid Gantt Charts are vulnerable to an Infinite Loop DoS - CVE-2026-41150
Forge has Denial of Service via Infinite Loop in BigInteger.modInverse() with Zero Input - CVE-2026-33891
LiquidJS: memoryLimit Bypass through Negative Range Values Leads to Process Crash - CVE-2026-33285
jsrsasign: Negative Exponent Handling Leads to Signature Verification Bypass - CVE-2026-4602

CSRF, XXE, and 12 Other Security Acronyms Explained

How to Secure your NodeJs Express Javascript Application - part 2

10 Secure Coding Best Practices to Follow in Every Project

Tags:: npm; jsrsasign

Anything's wrong? Let us know Last updated on March 29, 2026