Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
redhatcveRedhat.comRH:CVE-2021-3601
HistoryJun 15, 2021 - 12:23 p.m.

CVE-2021-3601

2021-06-1512:23:28
redhat.com
access.redhat.com
47

0.0004 Low

EPSS

Percentile

11.8%

JSON

A flaw was found in the way OpenSSL will accept a certificate with explicitly set Basic Constraints to CA:FALSE as a valid CA if it is present in the trusted bundle. This flaw allows an attacker with access to a private key, of which the corresponding certificate is in the trust bundle, to use this flaw for MITM to any connection from the victim machine.

Mitigation

Red Hat recommends not to include self-signed server certificates in system trust bundle, even with CA:FALSE, as they are considered full-fledged Certificate Authorities.

Related

ubuntucve 1
debiancve 1
cve 1
ibm 1
ubuntucve
ubuntucve
CVE-2021-3601
2021-06-18 00:00:00
debiancve
debiancve
CVE-2021-3601
2022-07-29 10:15:00
cve
cve
CVE-2021-3601
2022-07-29 10:15:00
ibm
ibm
Security Bulletin: Security Vulnerabilities affect IBM Cloud Private - OpenSSL (CVE-2021-3601)
2022-04-22 20:37:31

0.0004 Low

EPSS

Percentile

11.8%

JSON
Related for RH:CVE-2021-3601
ubuntucve1debiancve1cve1ibm1