CVE-2015-1855

MEDIUM

Description

verify_certificate_identity in the OpenSSL extension in Ruby before 2.0.0 patchlevel 645, 2.1.x before 2.1.6, and 2.2.x before 2.2.2 does not properly validate hostnames, which allows remote attackers to spoof servers via vectors related to (1) multiple wildcards, (1) wildcards in IDNA names, (3) case sensitivity, and (4) non-ASCII characters.

References

http://www.debian.org/security/2015/dsa-3245

http://www.debian.org/security/2015/dsa-3246

http://www.debian.org/security/2015/dsa-3247

https://bugs.ruby-lang.org/issues/9644

https://puppetlabs.com/security/cve/cve-2015-1855

https://www.ruby-lang.org/en/news/2015/04/13/ruby-openssl-hostname-matching-vulnerability/

Details

Source: MITRE

Published: 2019-11-29

Updated: 2019-12-17

Type: CWE-20

Risk Information

CVSS v2.0

Base Score: 4.3

Vector: AV:N/AC:M/Au:N/C:N/I:P/A:N

Impact Score: 2.9

Exploitability Score: 8.6

Severity: MEDIUM

CVSS v3.0

Base Score: 5.9

Vector: CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:H/A:N

Impact Score: 3.6

Exploitability Score: 2.2

Severity: MEDIUM

Vulnerable Software

Tenable Plugins

View all (20 total)

ID	Name	Product	Family	Severity
101974	Ubuntu 14.04 LTS / 16.04 LTS / 17.04 : ruby1.9.1, ruby2.0, ruby2.3 vulnerabilities (USN-3365-1)	Nessus	Ubuntu Local Security Checks	high
99753	openSUSE Security Update : ruby2.1 (openSUSE-2017-527)	Nessus	SuSE Local Security Checks	high
99578	SUSE SLED12 / SLES12 Security Update : ruby2.1 (SUSE-SU-2017:1067-1)	Nessus	SuSE Local Security Checks	high
99242	SUSE SLES11 Security Update : ruby (SUSE-SU-2017:0948-1)	Nessus	SuSE Local Security Checks	medium
8982	Mac OS X < 10.11 Multiple Vulnerabilities	Nessus Network Monitor	Operating System Detection	high
86270	Mac OS X < 10.11 Multiple Vulnerabilities (GHOST)	Nessus	MacOS X Local Security Checks	critical
83907	Debian DLA-235-1 : ruby1.9.1 security update	Nessus	Debian Local Security Checks	medium
83885	Amazon Linux AMI : ruby22 (ALAS-2015-533)	Nessus	Amazon Linux Local Security Checks	medium
83884	Amazon Linux AMI : ruby21 (ALAS-2015-532)	Nessus	Amazon Linux Local Security Checks	medium
83883	Amazon Linux AMI : ruby20 (ALAS-2015-531)	Nessus	Amazon Linux Local Security Checks	medium
83882	Amazon Linux AMI : ruby19 (ALAS-2015-530)	Nessus	Amazon Linux Local Security Checks	medium
83881	Amazon Linux AMI : ruby18 (ALAS-2015-529)	Nessus	Amazon Linux Local Security Checks	medium
83531	Debian DLA-224-1 : ruby1.8 security update	Nessus	Debian Local Security Checks	medium
83248	Mandriva Linux Security Advisory : ruby (MDVSA-2015:224)	Nessus	Mandriva Local Security Checks	high
83233	Debian DSA-3247-1 : ruby2.1 - security update	Nessus	Debian Local Security Checks	medium
83232	Debian DSA-3246-1 : ruby1.9.1 - security update	Nessus	Debian Local Security Checks	medium
83231	Debian DSA-3245-1 : ruby1.8 - security update	Nessus	Debian Local Security Checks	medium
83125	Fedora 21 : ruby-2.1.6-27.fc21 (2015-6377)	Nessus	Fedora Local Security Checks	medium
83043	Fedora 22 : ruby-2.2.2-11.fc22 (2015-6238)	Nessus	Fedora Local Security Checks	medium
82753	FreeBSD : Ruby -- OpenSSL Hostname Verification Vulnerability (d4379f59-3e9b-49eb-933b-61de4d0b0fdb)	Nessus	FreeBSD Local Security Checks	medium