Timing Attack Affecting web-token/jwt-framework package, versions <3.4.10>=4.0.0, <4.0.7>=4.1.0, <4.1.7
Do your applications use this vulnerable package?
In a few clicks we can analyze your entire application and see what components are vulnerable in your application, and suggest you quick fixes.
Test your applications- Snyk IDSNYK-PHP-WEBTOKENJWTFRAMEWORK-17420409
- published23 Jun 2026
- disclosed17 Jun 2026
- creditUnknown
Introduced: 17 Jun 2026
New CVE NOT AVAILABLE CWE-208 (opens in a new tab)How to fix?
Upgrade web-token/jwt-framework to version 3.4.10, 4.0.7, 4.1.7 or higher.
Overview
web-token/jwt-framework is a JSON Object Signing and Encryption library for PHP and Symfony Bundle.
Affected versions of this package are vulnerable to Timing Attack via RSAES-PKCS1-v1_5 decryption in RSACrypt::decryptWithRSA15(). An attacker can recover encrypted content-encryption keys by submitting adaptively crafted ciphertexts and observing timing differences during decryption. Because padding failures are handled differently from valid decryptions and the implementation does not use the implicit-rejection countermeasure required by PKCS#1, the decryption process acts as a Bleichenbacher/Marvin padding oracle. Repeated queries can reveal information about the wrapped key and ultimately lead to key recovery.
Note: This is only exploitable if the application enables the RSA1_5 key-encryption algorithm for JWE decryption and possesses an RSA private key.