Lucene search

K
ubuntucveUbuntu.comUB:CVE-2021-44532
HistoryFeb 24, 2022 - 12:00 a.m.

CVE-2021-44532

2022-02-2400:00:00
ubuntu.com
ubuntu.com
40
node.js
subject alternative names
injection vulnerability
certificate chain
security-revert command-line option

CVSS2

5

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

PARTIAL

Availability Impact

NONE

AV:N/AC:L/Au:N/C:N/I:P/A:N

CVSS3

5.3

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

NONE

Integrity Impact

LOW

Availability Impact

NONE

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N

EPSS

0.005

Percentile

77.5%

Node.js < 12.22.9, < 14.18.3, < 16.13.2, and < 17.3.1 converts SANs
(Subject Alternative Names) to a string format. It uses this string to
check peer certificates against hostnames when validating connections. The
string format was subject to an injection vulnerability when name
constraints were used within a certificate chain, allowing the bypass of
these name constraints.Versions of Node.js with the fix for this escape
SANs containing the problematic characters in order to prevent the
injection. This behavior can be reverted through the --security-revert
command-line option.

CVSS2

5

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

PARTIAL

Availability Impact

NONE

AV:N/AC:L/Au:N/C:N/I:P/A:N

CVSS3

5.3

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

NONE

Integrity Impact

LOW

Availability Impact

NONE

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N

EPSS

0.005

Percentile

77.5%