GitHub Advisory DatabaseGHSA-9XJR-M6F3-V5WMHTTPS MitM vulnerability due to lack of hostname verification
5.8 Medium
CVSS2
Attack Vector
NETWORK
Attack Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
NONE
AV:N/AC:M/Au:N/C:P/I:P/A:N
4.8 Medium
CVSS3
Attack Vector
NETWORK
Attack Complexity
HIGH
Privileges Required
NONE
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
LOW
Integrity Impact
LOW
Availability Impact
NONE
CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:L/I:L/A:N
0.001 Low
EPSS
Percentile
28.7%
When used on Windows platforms, all versions of Hyper prior to 0.9.4 did not perform hostname verification when making HTTPS requests.
This allows an attacker to perform MitM attacks by preventing any valid CA-issued certificate, even if there’s a hostname mismatch.
The problem was addressed by leveraging rust-openssl’s built-in support for hostname verification.
Affected configurations
References
github.com/advisories/GHSA-9xjr-m6f3-v5wm
github.com/hyperium/hyper/blob/master/CHANGELOG.md#v094-2016-05-09
github.com/hyperium/hyper/commit/01160abd92956e5f995cc45790df7a2b86c8989f
github.com/hyperium/hyper/issues/472
nvd.nist.gov/vuln/detail/CVE-2016-10932
rustsec.org/advisories/RUSTSEC-2016-0002.html
Related
5.8 Medium
CVSS2
Attack Vector
NETWORK
Attack Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
NONE
AV:N/AC:M/Au:N/C:P/I:P/A:N
4.8 Medium
CVSS3
Attack Vector
NETWORK
Attack Complexity
HIGH
Privileges Required
NONE
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
LOW
Integrity Impact
LOW
Availability Impact
NONE
CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:L/I:L/A:N
0.001 Low
EPSS
Percentile
28.7%