An issue was discovered in Mbed TLS before 2.24.0. The verification of X.509 certificates when matching the expected common name (the cn argument of mbedtls_x509_crt_verify) with the actual certificate name is mishandled: when the subjecAltName extension is present, the expected name is compared to any name in that extension regardless of its type. This means that an attacker could impersonate a 4-byte or 16-byte domain by getting a certificate for the corresponding IPv4 or IPv6 address (this would require the attacker to control that IP address, though).
References
Link | Resource |
---|---|
https://github.com/ARMmbed/mbedtls/issues/3498 | Third Party Advisory |
https://github.com/ARMmbed/mbedtls/releases/tag/v2.24.0 | Release Notes Third Party Advisory |
https://security.gentoo.org/glsa/202301-08 | Third Party Advisory |
Configurations
History
13 Jan 2023, 19:59
Type | Values Removed | Values Added |
---|---|---|
References | (GENTOO) https://security.gentoo.org/glsa/202301-08 - Third Party Advisory |
11 Jan 2023, 07:15
Type | Values Removed | Values Added |
---|---|---|
References |
|
26 Aug 2021, 23:48
Type | Values Removed | Values Added |
---|---|---|
CWE | CWE-295 | |
CVSS |
v2 : v3 : |
v2 : 4.3
v3 : 5.9 |
CPE | cpe:2.3:a:arm:mbed_tls:*:*:*:*:*:*:*:* | |
References | (MISC) https://github.com/ARMmbed/mbedtls/releases/tag/v2.24.0 - Release Notes, Third Party Advisory | |
References | (MISC) https://github.com/ARMmbed/mbedtls/issues/3498 - Third Party Advisory |
23 Aug 2021, 02:15
Type | Values Removed | Values Added |
---|---|---|
New CVE |
Information
Published : 2021-08-23 02:15
Updated : 2023-12-10 13:55
NVD link : CVE-2020-36477
Mitre link : CVE-2020-36477
CVE.ORG link : CVE-2020-36477
JSON object : View
Products Affected
arm
- mbed_tls
CWE
CWE-295
Improper Certificate Validation