CVE-2026-39373
Received Received - Intake
Decompression Bomb Memory Exhaustion in JWCrypto JWE Tokens

Publication date: 2026-04-07

Last updated on: 2026-04-15

Assigner: GitHub, Inc.

Description
JWCrypto implements JWK, JWS, and JWE specifications using python-cryptography. Prior to 1.5.7, an unauthenticated attacker can exhaust server memory by sending crafted JWE tokens with ZIP compression. The existing patch for CVE-2024-28102 limits input token size to 250KB but does not validate the decompressed output size. An unauthenticated attacker can cause memory exhaustion on memory-constrained systems. A token under the 250KB input limit can decompress to approximately 100MB. This vulnerability is fixed in 1.5.7.
CVSS Scores
EPSS Scores
Probability:
Percentile:
Meta Information
Published
2026-04-07
Last Modified
2026-04-15
Generated
2026-06-16
AI Q&A
2026-04-08
EPSS Evaluated
2026-06-14
NVD
CVE-2026-39373
EUVD
EUVD-2026-19911
Affected Vendors & Products
Showing 1 associated CPE
Vendor Product Version / Range
latchset jwcrypto to 1.5.7 (exc)
Helpful Resources
Exploitability
CWE
CWE Icon
KEV
KEV Icon
CWE ID Description
CWE-409 The product does not handle or incorrectly handles a compressed input with a very high compression ratio that produces a large output.
Attack-Flow Graph
AI Quick Actions
Instant insights powered by AI
Compliance Impact

The provided information does not specify any direct impact of this vulnerability on compliance with common standards and regulations such as GDPR or HIPAA.

Executive Summary

CVE-2026-39373 is a vulnerability in the jwcrypto Python package (versions up to 1.5.6) related to how it handles compressed JSON Web Encryption (JWE) tokens. The package limits the size of the compressed input token to 250KB but does not check the size of the decompressed output. This means an attacker can send a compressed token under 250KB that decompresses to a very large size (around 100MB), causing the server to use excessive memory.

Because the decompressed size is not validated, an unauthenticated attacker can exploit this to exhaust server memory, potentially causing a denial of service (DoS) on memory-constrained systems.

Impact Analysis

This vulnerability can lead to a denial of service (DoS) condition by exhausting the memory of systems processing JWE tokens with ZIP compression. An attacker does not need to be authenticated or have any privileges to exploit this issue.

On memory-constrained or small devices, the decompression of a crafted token can consume large amounts of memory (e.g., decompressing a 132KB token to about 100MB), potentially causing the system to slow down, crash, or become unresponsive.

Detection Guidance

This vulnerability can be detected by monitoring for unusually large decompressed JWE tokens being processed by the jwcrypto library, especially those using ZIP compression. Since the vulnerability involves decompressing compressed tokens that are under 250KB but decompress to very large sizes (e.g., ~100MB), detection involves inspecting JWE tokens for suspicious compression ratios.

You can detect attempts to exploit this vulnerability by capturing network traffic and extracting JWE tokens, then checking their compressed size and estimating decompressed size. However, no specific commands are provided in the available resources.

Mitigation Strategies

The immediate mitigation step is to upgrade the jwcrypto Python package to version 1.5.7 or later, where this vulnerability is fixed by properly validating the decompressed output size of JWE tokens.

Until the upgrade can be applied, consider implementing additional input validation or limiting the processing of compressed JWE tokens to prevent memory exhaustion, although no specific workaround commands are provided.

Chat Assistant
Ask questions about this CVE
Hi! I’m here to help you understand CVE-2026-39373. Ask me anything about the vulnerability, its impact, or mitigation strategies.
0/70
EPSS Chart