CVE-2026-27962

Authlib is a Python library which builds OAuth and OpenID Connect servers. Prior to version 1.6.9, a JWK Header Injection vulnerability in authlib's JWS implementation allows an unauthenticated attacker to forge arbitrary JWT tokens that pass signature verification. When key=None is passed to any JWS deserialization function, the library extracts and uses the cryptographic key embedded in the attacker-controlled JWT jwk header field. An attacker can sign a token with their own private key, embed the matching public key in the header, and have the server accept the forged token as cryptographically valid — bypassing authentication and authorization entirely. This issue has been patched in version 1.6.9.

CVSS v3 9.1 CRITICAL

9.1^/10

CVSS v3 : CRITICAL

Vector :

Exploitability : 3.9 / Impact : 5.2

Attack Vector NETWORK

Attack Complexity LOW

Privileges Required NONE

User Interaction NONE

Confidentiality Impact HIGH

Integrity Impact HIGH

Availability Impact NONE

Scope UNCHANGED

References

Link	Resource
https://github.com/authlib/authlib/commit/a5d4b2d4c9e46bfa11c82f85fdc2bcc0b50ae681	Patch
https://github.com/authlib/authlib/releases/tag/v1.6.9	Product Release Notes
https://github.com/authlib/authlib/security/advisories/GHSA-wvwj-cvrp-7pv5	Exploit Mitigation Vendor Advisory

Configurations

Configuration 1 (hide)

cpe:2.3:a:authlib:authlib:*:*:*:*:*:*:*:*

History

No history.

Information

Published : 2026-03-16 18:16

Updated : 2026-03-17 20:46

NVD link : CVE-2026-27962

Mitre link : CVE-2026-27962

CVE.ORG link : CVE-2026-27962

JSON object : View

Products Affected

authlib

authlib

CWE

CWE-347

Improper Verification of Cryptographic Signature

{"id": "CVE-2026-27962", "cveTags": [], "metrics": {"cvssMetricV31": [{"type": "Secondary", "source": "security-advisories@github.com", "cvssData": {"scope": "UNCHANGED", "version": "3.1", "baseScore": 9.1, "attackVector": "NETWORK", "baseSeverity": "CRITICAL", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:N", "integrityImpact": "HIGH", "userInteraction": "NONE", "attackComplexity": "LOW", "availabilityImpact": "NONE", "privilegesRequired": "NONE", "confidentialityImpact": "HIGH"}, "impactScore": 5.2, "exploitabilityScore": 3.9}]}, "published": "2026-03-16T18:16:07.383", "references": [{"url": "https://github.com/authlib/authlib/commit/a5d4b2d4c9e46bfa11c82f85fdc2bcc0b50ae681", "tags": ["Patch"], "source": "security-advisories@github.com"}, {"url": "https://github.com/authlib/authlib/releases/tag/v1.6.9", "tags": ["Product", "Release Notes"], "source": "security-advisories@github.com"}, {"url": "https://github.com/authlib/authlib/security/advisories/GHSA-wvwj-cvrp-7pv5", "tags": ["Exploit", "Mitigation", "Vendor Advisory"], "source": "security-advisories@github.com"}], "vulnStatus": "Analyzed", "weaknesses": [{"type": "Primary", "source": "security-advisories@github.com", "description": [{"lang": "en", "value": "CWE-347"}]}], "descriptions": [{"lang": "en", "value": "Authlib is a Python library which builds OAuth and OpenID Connect servers. Prior to version 1.6.9, a JWK Header Injection vulnerability in authlib's JWS implementation allows an unauthenticated attacker to forge arbitrary JWT tokens that pass signature verification. When key=None is passed to any JWS deserialization function, the library extracts and uses the cryptographic key embedded in the attacker-controlled JWT jwk header field. An attacker can sign a token with their own private key, embed the matching public key in the header, and have the server accept the forged token as cryptographically valid \u2014 bypassing authentication and authorization entirely. This issue has been patched in version 1.6.9."}, {"lang": "es", "value": "Authlib es una biblioteca de Python que construye servidores OAuth y OpenID Connect. Antes de la versi\u00f3n 1.6.9, una vulnerabilidad de inyecci\u00f3n de encabezado JWK en la implementaci\u00f3n JWS de authlib permite a un atacante no autenticado falsificar tokens JWT arbitrarios que pasan la verificaci\u00f3n de firma. Cuando se pasa key=None a cualquier funci\u00f3n de deserializaci\u00f3n JWS, la biblioteca extrae y utiliza la clave criptogr\u00e1fica incrustada en el campo de encabezado jwk del JWT controlado por el atacante. Un atacante puede firmar un token con su propia clave privada, incrustar la clave p\u00fablica correspondiente en el encabezado y hacer que el servidor acepte el token falsificado como criptogr\u00e1ficamente v\u00e1lido \u2014 eludiendo la autenticaci\u00f3n y la autorizaci\u00f3n por completo. Este problema ha sido parcheado en la versi\u00f3n 1.6.9."}], "lastModified": "2026-03-17T20:46:48.053", "configurations": [{"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:a:authlib:authlib:*:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "8C677FEC-2094-49D8-ABAB-F740B6F83D38", "versionEndExcluding": "1.6.9"}], "operator": "OR"}]}], "sourceIdentifier": "security-advisories@github.com"}