CVE Vulnerabilities

CVE-2018-1000520

Improper Certificate Validation

Published: Jun 26, 2018 | Modified: Nov 05, 2020
CVSS 3.x
7.5
HIGH
Source:
NVD
CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N
CVSS 2.x
5 MEDIUM
AV:N/AC:L/Au:N/C:N/I:P/A:N
RedHat/V2
RedHat/V3
Ubuntu

ARM mbedTLS version 2.7.0 and earlier contains a Ciphersuite Allows Incorrectly Signed Certificates vulnerability in mbedtls_ssl_get_verify_result() that can result in ECDSA-signed certificates are accepted, when only RSA-signed ones should be.. This attack appear to be exploitable via Peers negotiate a TLS-ECDH-RSA-* ciphersuite. Any of the peers can then provide an ECDSA-signed certificate, when only an RSA-signed one should be accepted..

Weakness

The software does not validate, or incorrectly validates, a certificate.

Affected Software

Name Vendor Start Version End Version
Mbed_tls Arm * 2.7.0
Mbedtls Ubuntu artful *
Mbedtls Ubuntu bionic *
Mbedtls Ubuntu cosmic *
Mbedtls Ubuntu devel *
Mbedtls Ubuntu disco *
Mbedtls Ubuntu eoan *
Mbedtls Ubuntu focal *
Mbedtls Ubuntu groovy *
Mbedtls Ubuntu hirsute *
Mbedtls Ubuntu impish *
Mbedtls Ubuntu jammy *
Mbedtls Ubuntu upstream *
Mbedtls Ubuntu xenial *

Potential Mitigations

References