CVE-2026-25537 🔴 HIGH jsonwebtoken is a JWT lib in rust. Prior to version 10.3.0, there is a Type Confusion vulnerability in jsonwebtoken, specifically, in its claim validation logic. When a standard claim (such as nbf or... Published Feb 04, 2026 Last Modified Feb 11, 2026 Views 12 Bookmarks 0 Description Request Expert Review jsonwebtoken is a JWT lib in rust. Prior to version 10.3.0, there is a Type Confusion vulnerability in jsonwebtoken, specifically, in its claim validation logic. When a standard claim (such as nbf or exp) is provided with an incorrect JSON type (Like a String instead of a Number), the library’s internal parsing mechanism marks the claim as “FailedToParse”. Crucially, the validation logic treats this “FailedToParse” state identically to “NotPresent”. This means that if a check is enabled (like: validate_nbf = true), but the claim is not explicitly marked as required in required_spec_claims, the library will skip the validation check entirely for the malformed claim, treating it as if it were not there. This allows attackers to bypass critical time-based security restrictions (like “Not Before” checks) and commit potential authentication and authorization bypasses. This issue has been patched in version 10.3.0. Affected Products (1) keats - jsonwebtoken Version: * CVSS Scores CVSS 3.1 7.5 7.5 HIGH CVSS 2.0 7.5 References github.com github.com github.com Additional Information Source security-advisories@github.com State Analyzed Related CVEs CVE-2026-1793 MEDIUM The Element Pack Addons for Elementor plugin for WordPress is vulnerable to arbitrary file reads in all versions up to, and including, 8.3.17 via the... Score: 6.5 CVE-2026-1750 HIGH The Ecwid by Lightspeed Ecommerce Shopping Cart plugin for WordPress is vulnerable to Privilege Escalation in all versions up to, and including, 7.0.7... Score: 8.8 CVE-2026-1490 CRITICAL The Spam protection, Anti-Spam, FireWall by CleanTalk plugin for WordPress is vulnerable to unauthorized Arbitrary Plugin Installation due to an autho... Score: 9.8 CVE-2026-2312 MEDIUM The Media Library Folders plugin for WordPress is vulnerable to Insecure Direct Object Reference in all versions up to, and including, 8.3.6 via the d... Score: 4.3 CVE-2026-1512 MEDIUM The Essential Addons for Elementor – Popular Elementor Templates & Widgets plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the p... Score: 6.4 CVE-2026-1843 HIGH The Super Page Cache plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the Activity Log in all versions up to, and including, 5.2.... Score: 7.2 Share CVE-2026-25537 Share on Social Media Copy Link Embed Code HTML Embed (for websites/blogs) Markdown (for GitHub/Discord) Request Expert Analysis Request a professional security analysis for CVE-2026-25537 from our verified experts. Credits System Use your credits to get expert analysis from verified security professionals. Purchase more credits anytime! Report Analysis