CVE-2017-3735
Description
While parsing an IPAddressFamily extension in an X.509 certificate, it is possible to do a one-byte overread. This would result in an incorrect text display of the certificate. This bug has been present since 2006 and is present in all versions of OpenSSL before 1.0.2m and 1.1.0g.
Risk Information
Base Score
5.3
MODERATE
Vector
CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N
EPSS Score
Exploitation Probability
36.888
Associated Vulnerability
| Vulnerability | OS Platform |
|---|---|
| Vulnerabilities CVE-2017-3736,CVE-2017-3735 are fixed in OpenSSL (x64) 1.0.2m | Windows |
| Vulnerabilities CVE-2017-3736,CVE-2017-3735 are fixed in OpenSSL (x64) 1.1.0g | Windows |
| Vulnerabilities CVE-2017-3735,CVE-2017-3736 are fixed in Nessus 6.11.3 | Windows |
| Vulnerabilities CVE-2017-3735,CVE-2017-3736 are fixed in Tenable Nessus 6.11.3 | Windows |
| Multiple Vulnerabilities are affected in IBM Cognos Analytics 11.0.12.0 | Windows |
| Multiple Vulnerabilities are affected in IBM Cognos Controller 10.2.0 | Windows |
| Multiple Vulnerabilities are affected in IBM Cognos Controller 10.2.1 | Windows |
| Multiple Vulnerabilities are affected in IBM Cognos Controller 10.3.0 | Windows |
| Multiple Vulnerabilities are affected in IBM Cognos Controller 10.3.1 | Windows |
| Multiple Vulnerabilities are affected in IBM MQ 8.0 | Windows |
| Multiple vulnerabilities are fixed in macOS High Sierra 10.13.2 | Mac |
| Multiple vulnerabilities are fixed in macOS High Sierra 10.13.2 Combo Update | Mac |
| Secure Socket Layer (SSL) cryptographic library and tools (USN-3475-1) libssl1.0.0_1.0.2g-1ubuntu4.9_i386.deb | Linux |
| Secure Socket Layer (SSL) cryptographic library and tools (USN-3475-1) libssl1.0.0_1.0.2g-1ubuntu4.9_amd64.deb | Linux |
| Secure Socket Layer (SSL) cryptographic library and tools (USN-3475-1) libssl1.0.0_1.0.1f-1ubuntu2.23_i386.deb | Linux |
| Secure Socket Layer (SSL) cryptographic library and tools (USN-3475-1) libssl1.0.0_1.0.1f-1ubuntu2.23_amd64.deb | Linux |
| Secure Socket Layer (SSL) cryptographic library and tools (USN-3475-1) libssl1.0.0_1.0.2g-1ubuntu11.3_i386.deb | Linux |
| Secure Socket Layer (SSL) cryptographic library and tools (USN-3475-1) libssl1.0.0_1.0.2g-1ubuntu11.3_amd64.deb | Linux |
| Secure Socket Layer (SSL) cryptographic library and tools (USN-3475-1) libssl1.0.0_1.0.2g-1ubuntu13.2_i386.deb | Linux |
| Secure Socket Layer (SSL) cryptographic library and tools (USN-3475-1) libssl1.0.0_1.0.2g-1ubuntu13.2_amd64.deb | Linux |
| openssl security update(DSA-4018-1) openssl_1.1.0f-3+deb9u1_i386.deb | Linux |
| openssl security update(DSA-4018-1) openssl_1.1.0f-3+deb9u1_amd64.deb | Linux |
| (RHSA-2018:3221) openssl security, bug fix, and enhancement update openssl-1.0.2k-16.el7.x86_64.rpm | Linux |
| (RHSA-2018:3221) openssl security, bug fix, and enhancement update openssl-devel-1.0.2k-16.el7.i686.rpm | Linux |
| (RHSA-2018:3221) openssl security, bug fix, and enhancement update openssl-devel-1.0.2k-16.el7.x86_64.rpm | Linux |
| (RHSA-2018:3221) openssl security, bug fix, and enhancement update openssl-libs-1.0.2k-16.el7.i686.rpm | Linux |
| (RHSA-2018:3221) openssl security, bug fix, and enhancement update openssl-libs-1.0.2k-16.el7.x86_64.rpm | Linux |
| (RHSA-2018:3221) openssl security, bug fix, and enhancement update openssl-perl-1.0.2k-16.el7.x86_64.rpm | Linux |
| (RHSA-2018:3221) openssl security, bug fix, and enhancement update openssl-static-1.0.2k-16.el7.i686.rpm | Linux |
| (RHSA-2018:3221) openssl security, bug fix, and enhancement update openssl-static-1.0.2k-16.el7.x86_64.rpm | Linux |
| (CESA-2018:3221) openssl security, bug fix, and enhancement update openssl-1.0.2k-16.el7.x86_64.rpm | Linux |
| (CESA-2018:3221) openssl security, bug fix, and enhancement update openssl-devel-1.0.2k-16.el7.i686.rpm | Linux |
| (CESA-2018:3221) openssl security, bug fix, and enhancement update openssl-devel-1.0.2k-16.el7.x86_64.rpm | Linux |
| (CESA-2018:3221) openssl security, bug fix, and enhancement update openssl-libs-1.0.2k-16.el7.i686.rpm | Linux |
| (CESA-2018:3221) openssl security, bug fix, and enhancement update openssl-libs-1.0.2k-16.el7.x86_64.rpm | Linux |
| (CESA-2018:3221) openssl security, bug fix, and enhancement update openssl-perl-1.0.2k-16.el7.x86_64.rpm | Linux |
| (CESA-2018:3221) openssl security, bug fix, and enhancement update openssl-static-1.0.2k-16.el7.i686.rpm | Linux |
| (CESA-2018:3221) openssl security, bug fix, and enhancement update openssl-static-1.0.2k-16.el7.x86_64.rpm | Linux |
| Improper Restriction of Operations within the Bounds of a Memory Buffer Vulnerability (CVE-2017-3735) | NCM |
Patch Details
Click to see the patches provided by ManageEngine for this CVE
| Patch ID | Patch Description |
|---|---|
| PATCH-601562 | macOS High Sierra 10.13.6 - Reboot Automatically |
| PATCH-601563 | macOS High Sierra 10.13.6 Combo Update - Reboot Automatically |
References
https://nvd.nist.gov/vuln/detail/CVE-2023-1234
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-1234