CVE-2013-4314 : The X509Extension in pyOpenSSL before 0.13.1 does not properly handle a '\0' cha

The X509Extension in pyOpenSSL before 0.13.1 does not properly handle a '\0' character in a domain name in the Subject Alternative Name field of an X.509 certificate, which allows man-in-the-middle attackers to spoof arbitrary SSL servers via a crafted certificate issued by a legitimate Certification Authority.

Published 2013-09-30 21:55:10

Updated 2025-04-11 00:51:22

Source Red Hat, Inc.

View at NVD, CVE.org

Products affected by CVE-2013-4314

Canonical » Ubuntu Linux » Version: 12.04 LTS Edition
cpe:2.3:o:canonical:ubuntu_linux:12.04:-:lts:*:*:*:*:*
Matching versions
Canonical » Ubuntu Linux » Version: 13.04
cpe:2.3:o:canonical:ubuntu_linux:13.04:*:*:*:*:*:*:*
Matching versions
Canonical » Ubuntu Linux » Version: 12.10
cpe:2.3:o:canonical:ubuntu_linux:12.10:*:*:*:*:*:*:*
Matching versions
Canonical » Ubuntu Linux » Version: 10.04 LTS Edition
cpe:2.3:o:canonical:ubuntu_linux:10.04:-:lts:*:*:*:*:*
Matching versions
Jean-paul Calderone » Pyopenssl
Versions up to, including, (<=) 0.13
cpe:2.3:a:jean-paul_calderone:pyopenssl:*:*:*:*:*:*:*:*
Matching versions
Jean-paul Calderone » Pyopenssl » Version: 0.11 Update A1
cpe:2.3:a:jean-paul_calderone:pyopenssl:0.11:a1:*:*:*:*:*:*
Matching versions
Jean-paul Calderone » Pyopenssl » Version: 0.10
cpe:2.3:a:jean-paul_calderone:pyopenssl:0.10:*:*:*:*:*:*:*
Matching versions
Jean-paul Calderone » Pyopenssl » Version: 0.9
cpe:2.3:a:jean-paul_calderone:pyopenssl:0.9:*:*:*:*:*:*:*
Matching versions
Jean-paul Calderone » Pyopenssl » Version: 0.8 Update A1
cpe:2.3:a:jean-paul_calderone:pyopenssl:0.8:a1:*:*:*:*:*:*
Matching versions
Jean-paul Calderone » Pyopenssl » Version: 0.12
cpe:2.3:a:jean-paul_calderone:pyopenssl:0.12:*:*:*:*:*:*:*
Matching versions
Jean-paul Calderone » Pyopenssl » Version: 0.7
cpe:2.3:a:jean-paul_calderone:pyopenssl:0.7:*:*:*:*:*:*:*
Matching versions
Jean-paul Calderone » Pyopenssl » Version: 0.11
cpe:2.3:a:jean-paul_calderone:pyopenssl:0.11:*:*:*:*:*:*:*
Matching versions
Jean-paul Calderone » Pyopenssl » Version: 0.11 Update A2
cpe:2.3:a:jean-paul_calderone:pyopenssl:0.11:a2:*:*:*:*:*:*
Matching versions

Exploit prediction scoring system (EPSS) score for CVE-2013-4314

EPSS FAQ

0.25%

Probability of exploitation activity in the next 30 days EPSS Score History

~ 45 %

Percentile, the proportion of vulnerabilities that are scored at or less

CVSS scores for CVE-2013-4314

Base Score	Base Severity	CVSS Vector	Exploitability Score	Impact Score	Score Source	First Seen
4.3	MEDIUM	AV:N/AC:M/Au:N/C:N/I:P/A:N	8.6	2.9	NIST
Access Vector: Network Access Complexity: Medium Authentication: None Confidentiality Impact: None Integrity Impact: Partial Availability Impact: None

CWE ids for CVE-2013-4314

CWE-20 Improper Input Validation

The product receives input or data, but it does not validate or incorrectly validates that the input has the properties that are required to process the data safely and correctly.

Assigned by: nvd@nist.gov (Primary)

References for CVE-2013-4314

http://www.openwall.com/lists/oss-security/2013/09/06/2

oss-security - Re: CVE request: pyOpenSSL hostname check bypassing vulnerability
https://mail.python.org/pipermail/pyopenssl-users/2013-September/000478.html

[pyOpenSSL-Users] pyOpenSSL 0.13.1
http://www.debian.org/security/2013/dsa-2763

Debian -- Security Information -- DSA-2763-1 pyopenssl
http://lists.opensuse.org/opensuse-updates/2013-11/msg00015.html

openSUSE-SU-2013:1648-1: moderate: update for python-pyOpenSSL
https://bugzilla.redhat.com/show_bug.cgi?id=1005325

1005325 – (CVE-2013-4314) CVE-2013-4314 pyOpenSSL: hostname check bypassing vulnerability
http://www.ubuntu.com/usn/USN-1965-1

USN-1965-1: pyOpenSSL vulnerability | Ubuntu security notices
Vendor Advisory

Jump to

Vulnerability Details : CVE-2013-4314

Products affected by CVE-2013-4314

Exploit prediction scoring system (EPSS) score for CVE-2013-4314

CVSS scores for CVE-2013-4314

CWE ids for CVE-2013-4314

References for CVE-2013-4314