Lucene search

Huawei EulerOS: Security Advisory for shim (EulerOS-SA-2023-2550)

Huawei EulerOS: Security Advisory for shim (EulerOS-SA-2023-2550) affecting 'shim' package(s) on EulerOS Virtualization release 2.10.1. Applications using non-default option for certificate verification may be vulnerable to attack from a malicious CA

Reporter	Title	Published	Views	Family All 199
RedhatCVE	CVE-2023-0465	30 Mar 202309:13	–	redhatcve
Vulnrichment	CVE-2023-0465 Invalid certificate policies in leaf certificates are silently ignored	28 Mar 202314:30	–	vulnrichment
Veracode	Authorization Bypass	2 Apr 202310:14	–	veracode
CVE	CVE-2023-0465	28 Mar 202315:15	–	cve
AlpineLinux	CVE-2023-0465	28 Mar 202315:15	–	alpinelinux
IBM Security Bulletins	Security Bulletin: CVE-2023-0465 may affect IBM CICS TX Advanced 10.1	26 Jul 202314:00	–	ibm
IBM Security Bulletins	Security Bulletin: IBM InfoSphere Information Server is affected by multiple vulnerabilities in OpenSSL	19 Mar 202423:16	–	ibm
IBM Security Bulletins	Security Bulletin: Vulnerability in NX-OS Firmware used by IBM c-type SAN directors and switches.	28 Mar 202419:47	–	ibm
IBM Security Bulletins	Security Bulletin: Vulnerability in FOS firmware used by IBM b-type SAN directors and switches.	1 May 202421:19	–	ibm
IBM Security Bulletins	Security Bulletin: IBM Master Data Management vulnerable to remote attacker due to flaws found in OpenSSL (CVE-2023-0466, CVE-2023-0465)	25 Oct 202420:48	–	ibm

Source	Link
developer	www.developer.huaweicloud.com/intl/en-us/euleros/securitydetail.html

# SPDX-FileCopyrightText: 2023 Greenbone AG
# Some text descriptions might be excerpted from (a) referenced
# source(s), and are Copyright (C) by the respective right holder(s).
#
# SPDX-License-Identifier: GPL-2.0-only

if(description)
{
  script_oid("1.3.6.1.4.1.25623.1.1.2.2023.2550");
  script_cve_id("CVE-2023-0465");
  script_tag(name:"creation_date", value:"2023-08-03 04:14:57 +0000 (Thu, 03 Aug 2023)");
  script_version("2024-02-05T14:36:57+0000");
  script_tag(name:"last_modification", value:"2024-02-05 14:36:57 +0000 (Mon, 05 Feb 2024)");
  script_tag(name:"cvss_base", value:"5.0");
  script_tag(name:"cvss_base_vector", value:"AV:N/AC:L/Au:N/C:N/I:P/A:N");
  script_tag(name:"severity_vector", value:"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N");
  script_tag(name:"severity_origin", value:"NVD");
  script_tag(name:"severity_date", value:"2023-04-04 16:46:40 +0000 (Tue, 04 Apr 2023)");

  script_name("Huawei EulerOS: Security Advisory for shim (EulerOS-SA-2023-2550)");
  script_category(ACT_GATHER_INFO);
  script_copyright("Copyright (C) 2023 Greenbone AG");
  script_family("Huawei EulerOS Local Security Checks");
  script_dependencies("gb_huawei_euleros_consolidation.nasl");
  script_mandatory_keys("ssh/login/euleros", "ssh/login/rpms", re:"ssh/login/release=EULEROSVIRT\-2\.10\.1");

  script_xref(name:"Advisory-ID", value:"EulerOS-SA-2023-2550");
  script_xref(name:"URL", value:"https://developer.huaweicloud.com/intl/en-us/euleros/securitydetail.html?secId=EulerOS-SA-2023-2550");

  script_tag(name:"summary", value:"The remote host is missing an update for the Huawei EulerOS 'shim' package(s) announced via the EulerOS-SA-2023-2550 advisory.");

  script_tag(name:"vuldetect", value:"Checks if a vulnerable package version is present on the target host.");

  script_tag(name:"insight", value:"Applications that use a non-default option when verifying certificates may be vulnerable to an attack from a malicious CA to circumvent certain checks. Invalid certificate policies in leaf certificates are silently ignored by OpenSSL and other certificate policy checks are skipped for that certificate. A malicious CA could use this to deliberately assert invalid certificate policies in order to circumvent policy checking on the certificate altogether. Policy processing is disabled by default but can be enabled by passing the `-policy' argument to the command line utilities or by calling the `X509_VERIFY_PARAM_set1_policies()' function.(CVE-2023-0465)");

  script_tag(name:"affected", value:"'shim' package(s) on Huawei EulerOS Virtualization release 2.10.1.");

  script_tag(name:"solution", value:"Please install the updated package(s).");

  script_tag(name:"solution_type", value:"VendorFix");
  script_tag(name:"qod_type", value:"package");

  exit(0);
}

include("revisions-lib.inc");
include("pkg-lib-rpm.inc");

release = rpm_get_ssh_release();
if(!release)
  exit(0);

res = "";
report = "";

if(release == "EULEROSVIRT-2.10.1") {

  if(!isnull(res = isrpmvuln(pkg:"shim", rpm:"shim~15~20.h10.eulerosv2r10", rls:"EULEROSVIRT-2.10.1"))) {
    report += res;
  }

  if(!isnull(res = isrpmvuln(pkg:"shim-aa64-storage", rpm:"shim-aa64-storage~15~20.h10.eulerosv2r10", rls:"EULEROSVIRT-2.10.1"))) {
    report += res;
  }

  if(report != "") {
    security_message(data:report);
  } else if(__pkg_match) {
    exit(99);
  }
  exit(0);
}

exit(0);

Transform Your Security Services

Elevate your offerings with Vulners' advanced Vulnerability Intelligence. Contact us for a demo and discover the difference comprehensive, actionable intelligence can make in your security strategy.

Book a live demo

03 Aug 2023 00:00Current

7High risk

Vulners AI Score7

CVSS35.3

EPSS0.00468

SSVC