CVE-2026-4603
Received Received - Intake
Division by Zero in jsrsasign RSA Key Parsing Causes Verification Bypass

Publication date: 2026-03-23

Last updated on: 2026-04-29

Assigner: Snyk

Description
Versions of the package jsrsasign before 11.1.1 are vulnerable to Division by zero due to the RSASetPublic/KEYUTIL parsing path in ext/rsa.js and the BigInteger.modPowInt reduction logic in ext/jsbn.js. An attacker can force RSA public-key operations (e.g., verify and encryption) to collapse to deterministic zero outputs and hide β€œinvalid key” errors by supplying a JWK whose modulus decodes to zero.
CVSS Scores
EPSS Scores
Probability:
Percentile:
Meta Information
Published
2026-03-23
Last Modified
2026-04-29
Generated
2026-06-16
AI Q&A
2026-03-23
EPSS Evaluated
2026-06-14
NVD
CVE-2026-4603
EUVD
EUVD-2026-14380
Affected Vendors & Products
Showing 1 associated CPE
Vendor Product Version / Range
jsrsasign_project jsrsasign to 11.1.1 (exc)
Helpful Resources
Exploitability
CWE
CWE Icon
KEV
KEV Icon
CWE ID Description
CWE-369 The product divides a value by zero.
Attack-Flow Graph
AI Quick Actions
Instant insights powered by AI
Executive Summary

CVE-2026-4603 is a vulnerability in the jsrsasign library versions before 11.1.1 that affects RSA public key handling. The issue arises because the library accepts RSA public keys whose modulus decodes to zero, due to insufficient validation during key parsing and silent handling of division by zero in BigInteger arithmetic.

Specifically, the RSASetPublic function only checked that the modulus string length was greater than zero, not its numeric value, allowing a zero modulus to be accepted. Additionally, the BigInteger.modPowInt function silently returned zero when performing modular exponentiation with a zero modulus instead of throwing an error.

As a result, RSA operations such as signature verification and encryption degenerate into deterministic zero outputs, hiding invalid key errors and causing cryptographic operations to fail silently or produce invalid results.

Impact Analysis

This vulnerability can impact applications that import RSA public keys from untrusted sources without proper validation. An attacker can supply a malformed RSA public key with a zero modulus, causing RSA operations to produce constant zero outputs.

  • Signature verification may fail silently, returning false without explicit errors.
  • Encryption operations may produce outputs independent of the plaintext, undermining confidentiality.
  • The malformed key is not rejected at import time, causing ambiguity between invalid keys and normal cryptographic failures.
  • This can lead to security boundary confusion, robustness issues, and potential key-substitution attacks.
Compliance Impact

I don't know

Detection Guidance

[{'type': 'paragraph', 'content': 'This vulnerability can be detected by checking if your system or application is using a vulnerable version of the jsrsasign library (versions before 11.1.1) that accepts RSA public keys with a zero modulus.'}, {'type': 'paragraph', 'content': 'Specifically, detection involves verifying whether RSA public keys imported from JSON Web Keys (JWK) have a modulus that decodes to zero (e.g., base64url "AA" which decodes to 0x00).'}, {'type': 'paragraph', 'content': 'Since the vulnerability arises from accepting zero-modulus keys without error, you can test your system by attempting to import a JWK with a zero modulus and observing if it is accepted or rejected.'}, {'type': 'list_item', 'content': 'Create a JWK with modulus `n` set to "AA" (base64url for 0x00) and exponent `e` set to "AQAB" (65537).'}, {'type': 'list_item', 'content': "Use your application's key import function (e.g., `KEYUTIL.getKey()`) to import this JWK."}, {'type': 'list_item', 'content': 'If the key is accepted without error, the system is vulnerable.'}, {'type': 'list_item', 'content': 'Additionally, test RSA operations such as signature verification or encryption with this key; vulnerable systems will produce deterministic zero outputs or fail silently.'}, {'type': 'paragraph', 'content': 'There are no specific network commands provided in the resources, but detection focuses on verifying the jsrsasign library version and testing key import behavior with crafted zero-modulus JWKs.'}] [1, 3]

Mitigation Strategies

The immediate and recommended mitigation is to upgrade the jsrsasign library to version 11.1.1 or later, where this vulnerability has been fixed.

The fix includes enhanced validation in the RSA key import functions to reject RSA public keys with zero or invalid modulus values and modifications to the BigInteger arithmetic to throw errors on division by zero.

  • Upgrade jsrsasign to version 11.1.1 or newer.
  • Ensure that your application rejects RSA public keys with modulus less than or equal to 1 during import.
  • Verify that your cryptographic operations throw errors on invalid keys rather than silently producing zero or invalid outputs.

If upgrading immediately is not possible, implement additional validation on RSA public keys before importing them, ensuring the modulus is a positive integer greater than 1.

Chat Assistant
Ask questions about this CVE
Hi! I’m here to help you understand CVE-2026-4603. Ask me anything about the vulnerability, its impact, or mitigation strategies.
0/70
EPSS Chart