CVE-2026-48523 jpadilla CVE debrief

Who should care

Organizations using PyJWT for JWT verification with PyJWK keys, particularly those implementing OIDC or other JWK-based authentication flows, should prioritize this update. Developers using `PyJWKClient` or manually constructing PyJWK objects for token validation are affected.

Technical summary

The vulnerability stems from a separation between algorithm validation and signature verification in PyJWT's handling of PyJWK keys. When a PyJWK object is provided to `jwt.decode()` or `jwt.decode_complete()`, the library checks the JWT header's `alg` claim against the caller's `algorithms` parameter, but then uses the algorithm embedded in the PyJWK object for actual signature verification. This allows an attacker with control of a legitimate private key in a JWKS to create tokens that pass algorithm allow-list checks while being verified with a different, potentially weaker or attacker-controlled algorithm. The issue specifically impacts the `PyJWKClient.get_signing_key_from_jwt()` pattern documented for fetching signing keys from a JWKS endpoint.

Defensive priority

medium

Recommended defensive actions

• Upgrade PyJWT to version 2.13.0 or later to remediate this vulnerability
• Review JWT verification implementations that use PyJWK keys to ensure they are not relying solely on header algorithm validation
• Audit applications using `PyJWKClient.get_signing_key_from_jwt()` for potential exposure to this bypass
• Verify that JWT verification logic explicitly validates that the algorithm used for signature verification matches the allowed algorithms list

Evidence notes

The CVE description and NVD record confirm the affected version range (2.9.0 to 2.12.1) and the specific bypass mechanism involving PyJWK objects. The GitHub Security Advisory provides the authoritative fix reference.

Official resources