CVE-2017-2629

medium
New! CVE Severity Now Using CVSS v3

The calculated severity for CVEs has been updated to use CVSS v3 by default. CVEs that do not have a CVSS v3 score will fall back CVSS v2 for calculating severity. Severity display preferences can be toggled in the settings dropdown.

Description

curl before 7.53.0 has an incorrect TLS Certificate Status Request extension feature that asks for a fresh proof of the server's certificate's validity in the code that checks for a test success or failure. It ends up always thinking there's valid proof, even when there is none or if the server doesn't support the TLS extension in question. This could lead to users not detecting when a server's certificate goes invalid or otherwise be mislead that the server is in a better shape than it is in reality. This flaw also exists in the command line tool (--cert-status).

References

http://www.securityfocus.com/bid/96382

http://www.securitytracker.com/id/1037871

https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2017-2629

https://curl.haxx.se/docs/adv_20170222.html

https://security.gentoo.org/glsa/201703-04

https://www.tenable.com/security/tns-2017-09

Details

Source: MITRE

Published: 2018-07-27

Updated: 2019-10-09

Type: CWE-295

Risk Information

CVSS v2

Base Score: 4

Vector: AV:N/AC:L/Au:S/C:N/I:P/A:N

Impact Score: 2.9

Exploitability Score: 8

Severity: MEDIUM

CVSS v3

Base Score: 6.5

Vector: CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:H/A:N

Impact Score: 3.6

Exploitability Score: 2.8

Severity: MEDIUM

Vulnerable Software

Configuration 1

OR

cpe:2.3:a:haxx:curl:*:*:*:*:*:*:*:*

Tenable Plugins

View all (4 total)

IDNameProductFamilySeverity
700170Mac OS X 10.x < 10.12.6 Multiple VulnerabilitiesNessus Network MonitorOperating System Detection
critical
101957macOS and Mac OS X Multiple Vulnerabilities (Security Update 2017-003)NessusMacOS X Local Security Checks
high
99011GLSA-201703-04 : cURL: Certificate validation errorNessusGentoo Local Security Checks
medium
97342FreeBSD : cURL -- ocsp status validation error (311e4b1c-f8ee-11e6-9940-b499baebfeaf)NessusFreeBSD Local Security Checks
medium