Vulnerability Details : CVE-2020-36478
Potential exploit
An issue was discovered in Mbed TLS before 2.25.0 (and before 2.16.9 LTS and before 2.7.18 LTS). A NULL algorithm parameters entry looks identical to an array of REAL (size zero) and thus the certificate is considered valid. However, if the parameters do not match in any way, then the certificate should be considered invalid.
Products affected by CVE-2020-36478
- cpe:2.3:o:debian:debian_linux:9.0:*:*:*:*:*:*:*
- cpe:2.3:o:debian:debian_linux:10.0:*:*:*:*:*:*:*
- cpe:2.3:o:siemens:logo\!_cmr2020_firmware:*:*:*:*:*:*:*:*
- cpe:2.3:o:siemens:logo\!_cmr2040_firmware:*:*:*:*:*:*:*:*
- cpe:2.3:o:siemens:simatic_rtu3031c_firmware:*:*:*:*:*:*:*:*
- cpe:2.3:o:siemens:simatic_rtu3041c_firmware:*:*:*:*:*:*:*:*
- cpe:2.3:o:siemens:simatic_rtu3030c_firmware:*:*:*:*:*:*:*:*
- cpe:2.3:o:siemens:simatic_rtu3000c_firmware:*:*:*:*:*:*:*:*
- cpe:2.3:a:arm:mbed_tls:*:*:*:*:*:*:*:*
- cpe:2.3:a:arm:mbed_tls:*:*:*:*:*:*:*:*
- cpe:2.3:a:arm:mbed_tls:*:*:*:*:*:*:*:*
Exploit prediction scoring system (EPSS) score for CVE-2020-36478
0.25%
Probability of exploitation activity in the next 30 days
EPSS Score History
~ 46 %
Percentile, the proportion of vulnerabilities that are scored at or less
CVSS scores for CVE-2020-36478
| Base Score | Base Severity | CVSS Vector | Exploitability Score | Impact Score | Score Source | First Seen |
|---|---|---|---|---|---|---|
|
5.0
|
MEDIUM | AV:N/AC:L/Au:N/C:N/I:P/A:N |
10.0
|
2.9
|
NIST | |
|
7.5
|
HIGH | CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N |
3.9
|
3.6
|
NIST |
CWE ids for CVE-2020-36478
-
The product does not validate, or incorrectly validates, a certificate.Assigned by: nvd@nist.gov (Primary)
References for CVE-2020-36478
-
https://lists.debian.org/debian-lts-announce/2022/12/msg00036.html
[SECURITY] [DLA 3249-1] mbedtls security updateMailing List;Third Party Advisory
-
https://github.com/ARMmbed/mbedtls/issues/3629
Certificate verification discrepancy between OpenSSL and mbed TLS · Issue #3629 · ARMmbed/mbedtls · GitHubExploit;Third Party Advisory
-
https://github.com/ARMmbed/mbedtls/releases/tag/v2.25.0
Release Mbed TLS 2.25.0 · ARMmbed/mbedtls · GitHubRelease Notes;Third Party Advisory
-
https://lists.debian.org/debian-lts-announce/2021/11/msg00021.html
[SECURITY] [DLA 2826-1] mbedtls security updateMailing List;Third Party Advisory
-
https://cert-portal.siemens.com/productcert/pdf/ssa-756638.pdf
Patch;Third Party Advisory
-
https://github.com/ARMmbed/mbedtls/releases/tag/v2.16.9
Release Mbed TLS 2.16.9 · ARMmbed/mbedtls · GitHubRelease Notes;Third Party Advisory
-
https://github.com/ARMmbed/mbedtls/releases/tag/v2.7.18
Release Mbed TLS 2.7.18 · ARMmbed/mbedtls · GitHubRelease Notes;Third Party Advisory
Jump to