NVD - CVE-2026-34986 (original) (raw)
CVE-2026-34986 Detail
Description
Go JOSE provides an implementation of the Javascript Object Signing and Encryption set of standards in Go, including support for JSON Web Encryption (JWE), JSON Web Signature (JWS), and JSON Web Token (JWT) standards. Prior to 4.1.4 and 3.0.5, decrypting a JSON Web Encryption (JWE) object will panic if the alg field indicates a key wrapping algorithm (one ending in KW, with the exception of A128GCMKW, A192GCMKW, and A256GCMKW) and the encrypted_key field is empty. The panic happens when cipher.KeyUnwrap() in key_wrap.go attempts to allocate a slice with a zero or negative length based on the length of the encrypted_key. This code path is reachable from ParseEncrypted() / ParseEncryptedJSON() / ParseEncryptedCompact() followed by Decrypt() on the resulting object. Note that the parse functions take a list of accepted key algorithms. If the accepted key algorithms do not include any key wrapping algorithms, parsing will fail and the application will be unaffected. This panic is also reachable by calling cipher.KeyUnwrap() directly with any ciphertext parameter less than 16 bytes long, but calling this function directly is less common. Panics can lead to denial of service. This vulnerability is fixed in 4.1.4 and 3.0.5.
Metrics
NVD enrichment efforts reference publicly available information to associate vector strings. CVSS information contributed by other sources is also displayed.
CVSS 4.0 Severity and Vector Strings:
NIST: NVD
N/A
NVD assessment not yet provided.
CVSS 3.x Severity and Vector Strings:
NIST: NVD
Base Score: N/A
NVD assessment not yet provided.
CNA: GitHub, Inc.
Base Score: 7.5 HIGH
Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
CVSS 2.0 Severity and Vector Strings:
NIST: NVD
Base Score: N/A
NVD assessment not yet provided.
References to Advisories, Solutions, and Tools
By selecting these links, you will be leaving NIST webspace. We have provided these links to other web sites because they may have information that would be of interest to you. No inferences should be drawn on account of other sites being referenced, or not, from this page. There may be other web sites that are more appropriate for your purpose. NIST does not necessarily endorse the views expressed, or concur with the facts presented on these sites. Further, NIST does not endorse any commercial products that may be mentioned on these sites. Please address comments about this page to [email protected].
| URL | Source(s) | Tag(s) |
|---|---|---|
| https://github.com/go-jose/go-jose/security/advisories/GHSA-78h2-9frx-2jm8 | GitHub, Inc. | Mitigation Vendor Advisory |
| https://pkg.go.dev/github.com/go-jose/go-jose/v4#pkg-constants | GitHub, Inc. | Product Technical Description |
Weakness Enumeration
| CWE-ID | CWE Name | Source |
|---|---|---|
| CWE-248 | Uncaught Exception | GitHub, Inc. |
Known Affected Software Configurations Switch to CPE 2.2
CPEs loading, please wait.
Denotes Vulnerable Software
Are we missing a CPE here? Please let us know.
Change History
2 change records found show changes
Initial Analysis by NIST 5/04/2026 11:20:44 AM
| Action | Type | Old Value | New Value |
|---|---|---|---|
| Added | CPE Configuration | OR *cpe:2.3:a:go-jose_project:go-jose:*:*:*:*:*:*:*:* versions from (including) 3.0.0 up to (excluding) 3.0.5 *cpe:2.3:a:go-jose_project:go-jose:*:*:*:*:*:*:*:* versions from (including) 4.0.0 up to (excluding) 4.1.4 | |
| Added | Reference Type | GitHub, Inc.: https://github.com/go-jose/go-jose/security/advisories/GHSA-78h2-9frx-2jm8 Types: Mitigation, Vendor Advisory | |
| Added | Reference Type | GitHub, Inc.: https://pkg.go.dev/github.com/go-jose/go-jose/v4#pkg-constants Types: Product, Technical Description |
New CVE Received from GitHub, Inc. 4/06/2026 1:17:11 PM
| Action | Type | Old Value | New Value |
|---|---|---|---|
| Added | Description | Go JOSE provides an implementation of the Javascript Object Signing and Encryption set of standards in Go, including support for JSON Web Encryption (JWE), JSON Web Signature (JWS), and JSON Web Token (JWT) standards. Prior to 4.1.4 and 3.0.5, decrypting a JSON Web Encryption (JWE) object will panic if the alg field indicates a key wrapping algorithm (one ending in KW, with the exception of A128GCMKW, A192GCMKW, and A256GCMKW) and the encrypted_key field is empty. The panic happens when cipher.KeyUnwrap() in key_wrap.go attempts to allocate a slice with a zero or negative length based on the length of the encrypted_key. This code path is reachable from ParseEncrypted() / ParseEncryptedJSON() / ParseEncryptedCompact() followed by Decrypt() on the resulting object. Note that the parse functions take a list of accepted key algorithms. If the accepted key algorithms do not include any key wrapping algorithms, parsing will fail and the application will be unaffected. This panic is also reachable by calling cipher.KeyUnwrap() directly with any ciphertext parameter less than 16 bytes long, but calling this function directly is less common. Panics can lead to denial of service. This vulnerability is fixed in 4.1.4 and 3.0.5. | |
| Added | CVSS V3.1 | AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H | |
| Added | CWE | CWE-248 | |
| Added | Reference | https://github.com/go-jose/go-jose/security/advisories/GHSA-78h2-9frx-2jm8 | |
| Added | Reference | https://pkg.go.dev/github.com/go-jose/go-jose/v4#pkg-constants |
Quick Info
CVE Dictionary Entry:
CVE-2026-34986
NVD Published Date:
04/06/2026
NVD Last Modified:
05/04/2026
Source:
GitHub, Inc.