OpenSSL: CA Certificate Check Bypass Vulnerability (CVE-2021-3450) - Windows

2021-03-2600:00:00

plugins.openvas.org

7.4 High

CVSS3

Attack Vector

NETWORK

Attack Complexity

HIGH

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

NONE

CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:N

7.7 High

AI Score

Confidence

High

5.8 Medium

CVSS2

Access Vector

NETWORK

Access Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

NONE

AV:N/AC:M/Au:N/C:P/I:P/A:N

0.003 Low

EPSS

Percentile

65.4%

JSON

OpenSSL is prone to a CA certificate check bypass vulnerability.

# Copyright (C) 2021 Greenbone Networks GmbH
# Some text descriptions might be excerpted from (a) referenced
# source(s), and are Copyright (C) by the respective right holder(s).
#
# SPDX-License-Identifier: GPL-2.0-or-later
#
# This program is free software; you can redistribute it and/or
# modify it under the terms of the GNU General Public License
# as published by the Free Software Foundation; either version 2
# of the License, or (at your option) any later version.
#
# This program is distributed in the hope that it will be useful,
# but WITHOUT ANY WARRANTY; without even the implied warranty of
# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE.  See the
# GNU General Public License for more details.
#
# You should have received a copy of the GNU General Public License
# along with this program; if not, write to the Free Software
# Foundation, Inc., 51 Franklin St, Fifth Floor, Boston, MA 02110-1301 USA.

CPE = "cpe:/a:openssl:openssl";

if(description)
{
  script_oid("1.3.6.1.4.1.25623.1.0.145655");
  script_version("2021-08-25T12:01:03+0000");
  script_tag(name:"last_modification", value:"2021-08-25 12:01:03 +0000 (Wed, 25 Aug 2021)");
  script_tag(name:"creation_date", value:"2021-03-26 02:17:02 +0000 (Fri, 26 Mar 2021)");
  script_tag(name:"cvss_base", value:"5.8");
  script_tag(name:"cvss_base_vector", value:"AV:N/AC:M/Au:N/C:P/I:P/A:N");
  script_tag(name:"severity_vector", value:"CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:N");
  script_tag(name:"severity_origin", value:"NVD");
  script_tag(name:"severity_date", value:"2021-07-20 23:15:00 +0000 (Tue, 20 Jul 2021)");

  script_cve_id("CVE-2021-3450");

  script_tag(name:"qod_type", value:"remote_banner");

  script_tag(name:"solution_type", value:"VendorFix");

  script_name("OpenSSL: CA Certificate Check Bypass Vulnerability (CVE-2021-3450) - Windows");

  script_category(ACT_GATHER_INFO);

  script_copyright("Copyright (C) 2021 Greenbone Networks GmbH");
  script_family("General");
  script_dependencies("gb_openssl_consolidation.nasl", "os_detection.nasl");
  script_mandatory_keys("openssl/detected", "Host/runs_windows");

  script_tag(name:"summary", value:"OpenSSL is prone to a CA certificate check bypass vulnerability.");

  script_tag(name:"vuldetect", value:"Checks if a vulnerable version is present on the target host.");

  script_tag(name:"insight", value:"The X509_V_FLAG_X509_STRICT flag enables additional
  security checks of the certificates present in a certificate chain. It is not set
  by default.

  Starting from OpenSSL version 1.1.1h a check to disallow certificates in
  the chain that have explicitly encoded elliptic curve parameters was added
  as an additional strict check.

  An error in the implementation of this check meant that the result of a
  previous check to confirm that certificates in the chain are valid CA
  certificates was overwritten. This effectively bypasses the check
  that non-CA certificates must not be able to issue other certificates.

  If a 'purpose' has been configured then there is a subsequent opportunity
  for checks that the certificate is a valid CA. All of the named 'purpose'
  values implemented in libcrypto perform this check. Therefore, where
  a purpose is set the certificate chain will still be rejected even when the
  strict flag has been used. A purpose is set by default in libssl client and
  server certificate verification routines, but it can be overridden or
  removed by an application.

  In order to be affected, an application must explicitly set the
  X509_V_FLAG_X509_STRICT verification flag and either not set a purpose
  for the certificate verification or, in the case of TLS client or server
  applications, override the default purpose.");

  script_tag(name:"affected", value:"OpenSSL version 1.1.1h through 1.1.1j.");

  script_tag(name:"solution", value:"Update to version 1.1.1k or later.");

  script_xref(name:"URL", value:"https://www.openssl.org/news/secadv/20210325.txt");

  exit(0);
}

include("host_details.inc");
include("version_func.inc");

if (isnull(port = get_app_port(cpe: CPE)))
  exit(0);

if (!infos = get_app_version_and_location(cpe: CPE, port: port, exit_no_version: TRUE))
  exit(0);

version = infos["version"];
location = infos["location"];

if (version_in_range(version: version, test_version: "1.1.1h", test_version2: "1.1.1j")) {
  report = report_fixed_ver(installed_version: version, fixed_version: "1.1.1k", install_path: location);
  security_message(port: port, data: report);
  exit(0);
}

exit(99);