CVE-2023-49083 : cryptography is a package designed to expose cryptographic primitives and recipe

cryptography is a package designed to expose cryptographic primitives and recipes to Python developers. Calling `load_pem_pkcs7_certificates` or `load_der_pkcs7_certificates` could lead to a NULL-pointer dereference and segfault. Exploitation of this vulnerability poses a serious risk of Denial of Service (DoS) for any application attempting to deserialize a PKCS7 blob/certificate. The consequences extend to potential disruptions in system availability and stability. This vulnerability has been patched in version 41.0.6.

Published 2023-11-29 19:15:08

Updated 2024-09-05 16:09:10

Source GitHub, Inc.

View at NVD, CVE.org

Vulnerability category: Memory CorruptionDenial of service

Products affected by CVE-2023-49083

Cryptography.io » Cryptography » For Python
Versions from including (>=) 3.1 and before (<) 41.0.6
cpe:2.3:a:cryptography.io:cryptography:*:*:*:*:*:python:*:*
Matching versions

Exploit prediction scoring system (EPSS) score for CVE-2023-49083

EPSS FAQ

0.45%

Probability of exploitation activity in the next 30 days EPSS Score History

~ 62 %

Percentile, the proportion of vulnerabilities that are scored at or less

CVSS scores for CVE-2023-49083

Base Score	Base Severity	CVSS Vector	Exploitability Score	Impact Score	Score Source
7.5	HIGH	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H	3.9	3.6	NIST
Attack Vector: Network Attack Complexity: Low Privileges Required: None User Interaction: None Scope: Unchanged Confidentiality: None Integrity: None Availability: High
5.9	MEDIUM	CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H	2.2	3.6	GitHub, Inc.
Attack Vector: Network Attack Complexity: High Privileges Required: None User Interaction: None Scope: Unchanged Confidentiality: None Integrity: None Availability: High
9.1	CRITICAL	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:H	3.9	5.2	GitHub, Inc.
Attack Vector: Network Attack Complexity: Low Privileges Required: None User Interaction: None Scope: Unchanged Confidentiality: None Integrity: High Availability: High

CWE ids for CVE-2023-49083

CWE-476 NULL Pointer Dereference

The product dereferences a pointer that it expects to be valid but is NULL.

Assigned by: security-advisories@github.com (Primary)

References for CVE-2023-49083

https://github.com/pyca/cryptography/commit/f09c261ca10a31fe41b1262306db7f8f1da0e48a

41.0.6 release (#9927) · pyca/cryptography@f09c261 · GitHub
Patch
https://github.com/pyca/cryptography/pull/9926

Fixed crash when loading a PKCS#7 bundle with no certificates by alex · Pull Request #9926 · pyca/cryptography · GitHub
Issue Tracking;Patch
https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/QMNTYMUGFJSDBYBU22FUYBHFRZODRKXV/

[SECURITY] Fedora 39 Update: python-cryptography-41.0.7-1.fc39 - package-announce - Fedora Mailing-Lists
http://www.openwall.com/lists/oss-security/2023/11/29/2

oss-security - Python Cryptography advisory: CVE-2023-49083 NULL-dereference when loading PKCS7 certificates
https://github.com/pyca/cryptography/security/advisories/GHSA-jfhm-5ghh-2f97

NULL-dereference when loading PKCS7 certificates · Advisory · pyca/cryptography · GitHub
Exploit;Vendor Advisory

Jump to

Vulnerability Details : CVE-2023-49083

Products affected by CVE-2023-49083

Exploit prediction scoring system (EPSS) score for CVE-2023-49083

CVSS scores for CVE-2023-49083

CWE ids for CVE-2023-49083

References for CVE-2023-49083