This page collects WhisperX intelligence signals tagged #jsbn. It is designed for humans, search engines, and AI agents: each item links to a canonical source-backed record with sector, source, timestamp, credibility, and exportable structured data.
A critical denial-of-service vulnerability in the node-forge cryptographic library has been remediated through an emergency update to version 1.4.0. The flaw, tracked as CVE-2026-33891, resided in the BigInteger.modInverse() function inherited from the bundled jsbn library. When invoked with a zero value, the function'...
The node-forge JavaScript cryptography library has released version 1.4.0, patching a high-severity Denial of Service vulnerability (CVE-2026-33891) in its BigInteger.modInverse() function. The flaw, discovered by researcher Kr0emer, stems from an infinite loop triggered when modInverse() receives a zero value as input...
A high-severity denial-of-service vulnerability has been patched in node-forge, a widely-used JavaScript cryptography library maintained by DigitalBazaar. The fix, released in version 1.4.0, addresses a critical flaw in the `BigInteger.modInverse()` function that could allow attackers to trigger an infinite loop, causi...