#VU79490 Improper certificate validation in cryptography


Published: 2023-08-14

Vulnerability identifier: #VU79490

Vulnerability risk: Medium

CVSSv3.1: 5.7 [CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:N/E:U/RL:O/RC:C]

CVE-ID: CVE-2023-38325

CWE-ID: CWE-295

Exploitation vector: Network

Exploit availability: No

Vulnerable software:
cryptography
Universal components / Libraries / Programming Languages & Components

Vendor: Сryptography

Description

The vulnerability allows a remote attacker to perform MitM attack.

The vulnerability exists due to improper certificate validation when handling SSH certificates that have critical options. A remote attacker can perform MitM attack.

Mitigation
Install updates from vendor's website.

Vulnerable software versions

cryptography: 40.0.0 - 41.0.1

External links
http://github.com/pyca/cryptography/compare/41.0.1...41.0.2
http://github.com/pyca/cryptography/issues/9207
http://github.com/pyca/cryptography/pull/9208

Q & A

Can this vulnerability be exploited remotely?

Yes. This vulnerability can be exploited by a remote non-authenticated attacker via the Internet.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.


Latest bulletins with this vulnerability


Multiple vulnerabilities in IBM SOAR QRadar Plugin App
Multiple vulnerabilities in IBM QRadar Suite Software
Multiple vulnerabilities in IBM Cloud Pak for Watson AIOps
Multiple vulnerabilities in Oracle Communications Cloud Native Core Network Repository Function
Multiple vulnerabilities in Oracle Communications Diameter Signaling Router
Multiple vulnerabilities in IBM Observability with Instana (OnPrem)
Multiple vulnerabilities in IBM Storage Sentinel Anomaly Scan Engine
Improper certificate validation in IBM Cinder plug-in
IBM Watson Speech Services Cartridge for IBM Cloud Pak for Data update for Python Cryptographic Authority
Improper certificate validation in IBM Process Mining