Vulnerability Details : CVE-2023-22742
libgit2 is a cross-platform, linkable library implementation of Git. When using an SSH remote with the optional libssh2 backend, libgit2 does not perform certificate checking by default. Prior versions of libgit2 require the caller to set the `certificate_check` field of libgit2's `git_remote_callbacks` structure - if a certificate check callback is not set, libgit2 does not perform any certificate checking. This means that by default - without configuring a certificate check callback, clients will not perform validation on the server SSH keys and may be subject to a man-in-the-middle attack. Users are encouraged to upgrade to v1.4.5 or v1.5.1. Users unable to upgrade should ensure that all relevant certificates are manually checked.
Products affected by CVE-2023-22742
- cpe:2.3:a:libgit2:libgit2:*:*:*:*:*:*:*:*
- cpe:2.3:a:libgit2:libgit2:1.5.0:*:*:*:*:*:*:*
Exploit prediction scoring system (EPSS) score for CVE-2023-22742
0.13%
Probability of exploitation activity in the next 30 days
EPSS Score History
~ 49 %
Percentile, the proportion of vulnerabilities that are scored at or less
CVSS scores for CVE-2023-22742
Base Score | Base Severity | CVSS Vector | Exploitability Score | Impact Score | Score Source | First Seen |
---|---|---|---|---|---|---|
5.9
|
MEDIUM | CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:H/A:N |
2.2
|
3.6
|
NIST | |
5.3
|
MEDIUM | CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:N/I:H/A:N |
1.6
|
3.6
|
GitHub, Inc. |
CWE ids for CVE-2023-22742
-
The product does not verify, or incorrectly verifies, the cryptographic signature for data.Assigned by: security-advisories@github.com (Primary)
References for CVE-2023-22742
-
https://www.libssh2.org
libssh2Third Party Advisory
-
https://github.com/libgit2/libgit2/releases/tag/v1.5.1
Release libgit2 v1.5.1 · libgit2/libgit2 · GitHubRelease Notes;Third Party Advisory
-
https://github.com/libgit2/libgit2/security/advisories/GHSA-8643-3wh5-rmjq
libgit2 fails to verify SSH keys by default · Advisory · libgit2/libgit2 · GitHubThird Party Advisory
-
https://github.com/libgit2/libgit2/commit/cd6f679af401eda1f172402006ef8265f8bd58ea
Merge pull request #6449 from libgit2/1.4_ssh · libgit2/libgit2@cd6f679 · GitHubPatch;Third Party Advisory
-
https://github.com/libgit2/libgit2/releases/tag/v1.4.5
Release libgit2 v1.4.5 · libgit2/libgit2 · GitHubRelease Notes;Third Party Advisory
-
https://github.com/libgit2/libgit2/commit/42e5db98b963ae503229c63e44e06e439df50e56
Merge pull request #6450 from libgit2/1.5_ssh · libgit2/libgit2@42e5db9 · GitHubPatch;Third Party Advisory
Jump to