Lucene search

HCLCVELIST:CVE-2021-27768

HistoryMay 12, 2022 - 9:25 p.m.

CVE-2021-27768 An SSL certificate host verification vulnerability affects HCL Verse for Android

2022-05-1221:25:22

CWE-300

HCL

www.cve.org

cve-2021-27768

ssl certificate

host verification

vulnerability

hcl verse

android

man-in-the-middle

mitm attack

interception

proxy server

invalid hostname

network traffic

CVSS3

6.3

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

LOW

User Interaction

REQUIRED

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

LOW

Availability Impact

NONE

CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:U/C:H/I:L/A:N

AI Score

6.4

Confidence

High

EPSS

0.001

Percentile

38.6%

JSON

Using the ability to perform a Man-in-the-Middle (MITM) attack, which indicates a lack of hostname verification, sensitive account information was able to be intercepted. In this specific scenario, the application’s network traffic was intercepted using a proxy server set up in ‘transparent’ mode while a certificate with an invalid hostname was active. The Android application was found to have hostname verification issues during the server setup and login flows; however, the application did not process requests post-login.

CNA Affected

[
  {
    "product": "Verse for Android",
    "vendor": "HCL Software",
    "versions": [
      {
        "lessThan": "12.0.9",
        "status": "affected",
        "version": "unspecified",
        "versionType": "custom"
      }
    ]
  }
]

References

support.hcltechsw.com/csm?id=kb_article&sysparm_article=KB0097753