CVE-2021-3618

ALPACA is an application layer protocol content confusion attack, exploiting TLS servers implementing different protocols but using compatible certificates, such as multi-domain or wildcard certificates. A MiTM attacker having access to victim's traffic at the TCP/IP layer can redirect traffic from one subdomain to another, resulting in a valid TLS session. This breaks the authentication of TLS and cross-protocol attacks may be possible where the behavior of one protocol service may compromise the other at the application layer.
References
Link Resource
https://alpaca-attack.com/ Third Party Advisory
https://bugzilla.redhat.com/show_bug.cgi?id=1975623 Issue Tracking Patch Third Party Advisory
https://lists.debian.org/debian-lts-announce/2022/11/msg00031.html Mailing List Third Party Advisory
Configurations

Configuration 1 (hide)

cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*

Configuration 2 (hide)

cpe:2.3:a:sendmail:sendmail:*:*:*:*:*:*:*:*

Configuration 3 (hide)

cpe:2.3:a:vsftpd_project:vsftpd:*:*:*:*:*:*:*:*

Configuration 4 (hide)

OR cpe:2.3:o:fedoraproject:fedora:33:*:*:*:*:*:*:*
cpe:2.3:o:fedoraproject:fedora:34:*:*:*:*:*:*:*
cpe:2.3:o:fedoraproject:fedora:35:*:*:*:*:*:*:*

Configuration 5 (hide)

cpe:2.3:o:debian:debian_linux:10.0:*:*:*:*:*:*:*

History

09 Feb 2023, 02:03

Type Values Removed Values Added
First Time Debian
Debian debian Linux
CPE cpe:2.3:o:debian:debian_linux:10.0:*:*:*:*:*:*:*
References (MLIST) https://lists.debian.org/debian-lts-announce/2022/11/msg00031.html - (MLIST) https://lists.debian.org/debian-lts-announce/2022/11/msg00031.html - Mailing List, Third Party Advisory

23 Nov 2022, 02:15

Type Values Removed Values Added
References
  • (MLIST) https://lists.debian.org/debian-lts-announce/2022/11/msg00031.html -

27 Oct 2022, 15:58

Type Values Removed Values Added
References (MISC) https://alpaca-attack.com/ - (MISC) https://alpaca-attack.com/ - Third Party Advisory

13 Sep 2022, 15:15

Type Values Removed Values Added
References
  • {'url': 'https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=991328', 'name': 'https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=991328', 'tags': ['Exploit', 'Mailing List', 'Patch', 'Third Party Advisory'], 'refsource': 'MISC'}
  • {'url': 'https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=991329', 'name': 'https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=991329', 'tags': ['Exploit', 'Mailing List', 'Release Notes', 'Third Party Advisory'], 'refsource': 'MISC'}
  • {'url': 'https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=991331', 'name': 'https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=991331', 'tags': ['Exploit', 'Mailing List', 'Patch', 'Third Party Advisory'], 'refsource': 'MISC'}
  • {'url': 'https://github.com/nginx/nginx/commit/173f16f736c10eae46cd15dd861b04b82d91a37a', 'name': 'https://github.com/nginx/nginx/commit/173f16f736c10eae46cd15dd861b04b82d91a37a', 'tags': ['Patch', 'Third Party Advisory'], 'refsource': 'MISC'}
  • {'url': 'https://ubuntu.com/security/CVE-2021-3618', 'name': 'https://ubuntu.com/security/CVE-2021-3618', 'tags': ['Exploit', 'Third Party Advisory'], 'refsource': 'MISC'}
  • (MISC) https://alpaca-attack.com/ -

04 Apr 2022, 20:46

Type Values Removed Values Added
CVSS v2 : unknown
v3 : unknown
v2 : 5.8
v3 : 7.4
First Time Sendmail sendmail
Vsftpd Project
Sendmail
F5
Fedoraproject fedora
F5 nginx
Vsftpd Project vsftpd
Fedoraproject
CPE cpe:2.3:o:fedoraproject:fedora:33:*:*:*:*:*:*:*
cpe:2.3:a:sendmail:sendmail:*:*:*:*:*:*:*:*
cpe:2.3:a:vsftpd_project:vsftpd:*:*:*:*:*:*:*:*
cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*
cpe:2.3:o:fedoraproject:fedora:34:*:*:*:*:*:*:*
cpe:2.3:o:fedoraproject:fedora:35:*:*:*:*:*:*:*
CWE CWE-295
References (MISC) https://ubuntu.com/security/CVE-2021-3618 - (MISC) https://ubuntu.com/security/CVE-2021-3618 - Exploit, Third Party Advisory
References (MISC) https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=991329 - (MISC) https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=991329 - Exploit, Mailing List, Release Notes, Third Party Advisory
References (MISC) https://bugzilla.redhat.com/show_bug.cgi?id=1975623 - (MISC) https://bugzilla.redhat.com/show_bug.cgi?id=1975623 - Issue Tracking, Patch, Third Party Advisory
References (MISC) https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=991328 - (MISC) https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=991328 - Exploit, Mailing List, Patch, Third Party Advisory
References (MISC) https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=991331 - (MISC) https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=991331 - Exploit, Mailing List, Patch, Third Party Advisory
References (MISC) https://github.com/nginx/nginx/commit/173f16f736c10eae46cd15dd861b04b82d91a37a - (MISC) https://github.com/nginx/nginx/commit/173f16f736c10eae46cd15dd861b04b82d91a37a - Patch, Third Party Advisory

23 Mar 2022, 20:15

Type Values Removed Values Added
New CVE

Information

Published : 2022-03-23 20:15

Updated : 2023-12-10 14:22


NVD link : CVE-2021-3618

Mitre link : CVE-2021-3618

CVE.ORG link : CVE-2021-3618


JSON object : View

Products Affected

sendmail

  • sendmail

f5

  • nginx

vsftpd_project

  • vsftpd

debian

  • debian_linux

fedoraproject

  • fedora
CWE
CWE-295

Improper Certificate Validation