CVE-2021-3618
Description
ALPACA is an application layer protocol content confusion attack, exploiting TLS servers implementing different protocols but using compatible certificates, such as multi-domain or wildcard certificates. A MiTM attacker having access to victims traffic at the TCP/IP layer can redirect traffic from one subdomain to another, resulting in a valid TLS session. This breaks the authentication of TLS and cross-protocol attacks may be possible where the behavior of one protocol service may compromise the other at the application layer.
Risk Information
Base Score
7.4
MODERATE
Vector
CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:N
EPSS Score
Exploitation Probability
0.615
Associated Vulnerability
| Vulnerability | OS Platform |
|---|---|
| Vulnerability CVE-2021-3618 are affected in Nginx 1.20.2 | Windows |
| small, powerful, scalable web/proxy server (USN-5371-1) nginx-core_1.18.0-0ubuntu1.3_amd64.deb | Linux |
| small, powerful, scalable web/proxy server (USN-5371-1) nginx-core_1.14.0-0ubuntu1.10_i386.deb | Linux |
| small, powerful, scalable web/proxy server (USN-5371-1) nginx-core_1.14.0-0ubuntu1.10_amd64.deb | Linux |
| small, powerful, scalable web/proxy server (USN-5371-1) nginx-core_1.18.0-6ubuntu11.1_amd64.deb | Linux |
| small, powerful, scalable web/proxy server (USN-5371-1) nginx-full_1.18.0-0ubuntu1.4_amd64.deb | Linux |
| small, powerful, scalable web/proxy server (USN-5371-1) nginx-full_1.14.0-0ubuntu1.11_i386.deb | Linux |
| small, powerful, scalable web/proxy server (USN-5371-1) nginx-full_1.14.0-0ubuntu1.11_amd64.deb | Linux |
| small, powerful, scalable web/proxy server (USN-5371-1) nginx-light_1.18.0-0ubuntu1.4_amd64.deb | Linux |
| small, powerful, scalable web/proxy server (USN-5371-1) nginx-light_1.14.0-0ubuntu1.11_i386.deb | Linux |
| small, powerful, scalable web/proxy server (USN-5371-1) nginx-light_1.14.0-0ubuntu1.11_amd64.deb | Linux |
| small, powerful, scalable web/proxy server (USN-5371-1) nginx-light_1.18.0-6ubuntu11.1_amd64.deb | Linux |
| small, powerful, scalable web/proxy server (USN-5371-1) nginx-extras_1.18.0-0ubuntu1.4_amd64.deb | Linux |
| small, powerful, scalable web/proxy server (USN-5371-1) nginx-extras_1.14.0-0ubuntu1.11_i386.deb | Linux |
| small, powerful, scalable web/proxy server (USN-5371-1) nginx-extras_1.14.0-0ubuntu1.11_amd64.deb | Linux |
| small, powerful, scalable web/proxy server (USN-5371-1) nginx-extras_1.18.0-6ubuntu11.1_amd64.deb | Linux |
| small, powerful, scalable web/proxy server (USN-5371-1) libnginx-mod-http-lua_1.18.0-0ubuntu1.3_amd64.deb | Linux |
| small, powerful, scalable web/proxy server (USN-5371-1) libnginx-mod-http-lua_1.14.0-0ubuntu1.10_i386.deb | Linux |
| small, powerful, scalable web/proxy server (USN-5371-1) libnginx-mod-http-lua_1.14.0-0ubuntu1.10_amd64.deb | Linux |
| SUSE-SU-2022:3888-1(SUSE Linux Enterprise Server 12-SP5 ) vsftpd-3.0.5-51.1.x86_64.rpm | Linux |
| SUSE-SU-2022:3888-1(SUSE Linux Enterprise Server 12-SP5 ) vsftpd-debuginfo-3.0.5-51.1.x86_64.rpm | Linux |
| SUSE-SU-2022:3888-1(SUSE Linux Enterprise Server 12-SP5 ) vsftpd-debugsource-3.0.5-51.1.x86_64.rpm | Linux |
| FTP server written for security (USN-6379-1) vsftpd_3.0.5-0ubuntu0.20.04.1_amd64.deb | Linux |
| Vulnerability CVE-2021-3618 are affected in Nginx 1.20.2 (For Linux) | Linux |
| SUSE-SU-2022:3383-1(SUSE Linux Enterprise Server 12-SP5) vsftpd-3.0.5-47.7.1.x86_64.rpm | Linux |
| SUSE-SU-2022:3383-1(SUSE Linux Enterprise Server 12-SP5) vsftpd-debuginfo-3.0.5-47.7.1.x86_64.rpm | Linux |
| SUSE-SU-2022:3383-1(SUSE Linux Enterprise Server 12-SP5) vsftpd-debugsource-3.0.5-47.7.1.x86_64.rpm | Linux |
| SUSE-SU-2022:4201-1(SUSE Linux Enterprise Module for Server Applications 15-SP3 ) nginx-1.19.8-150300.3.9.1.x86_64.rpm | Linux |
| SUSE-SU-2022:4201-1(SUSE Linux Enterprise Module for Server Applications 15-SP3 ) nginx-source-1.19.8-150300.3.9.1.noarch.rpm | Linux |
| small, powerful, scalable web/proxy server (USN-5371-2) nginx-core_1.18.0-6ubuntu14.1_amd64.deb | Linux |
| small, powerful, scalable web/proxy server (USN-5371-2) nginx-light_1.18.0-6ubuntu14.1_amd64.deb | Linux |
| small, powerful, scalable web/proxy server (USN-5371-2) nginx-extras_1.18.0-6ubuntu14.1_amd64.deb | Linux |
| sendmail Security Update (ALAS-2023-018) sendmail-8.17.1-5.amzn2023.0.4.x86_64.rpm | Linux |
| sendmail Security Update (ALAS-2023-018) sendmail-cf-8.17.1-5.amzn2023.0.4.noarch.rpm | Linux |
| sendmail Security Update (ALAS-2023-018) sendmail-doc-8.17.1-5.amzn2023.0.4.noarch.rpm | Linux |
| sendmail Security Update (ALAS-2023-018) sendmail-milter-8.17.1-5.amzn2023.0.4.x86_64.rpm | Linux |
| sendmail Security Update (ALAS-2023-018) sendmail-milter-devel-8.17.1-5.amzn2023.0.4.x86_64.rpm | Linux |
| vsftpd Security Update (ALAS-2023-019) vsftpd-3.0.5-1.amzn2023.0.2.x86_64.rpm | Linux |
| vsftpd Security Update (ALAS-2024-2431) vsftpd-3.0.2-25.amzn2.0.1.x86_64.rpm | Linux |
| vsftpd Security Update (ALAS-2024-2431) vsftpd-sysvinit-3.0.2-25.amzn2.0.1.x86_64.rpm | Linux |
| vsftpd Security Update (ALAS2023-2023-019) vsftpd-3.0.5-1.amzn2023.0.2.x86_64.rpm | Linux |
| vsftpd Security Update (ALAS2-2024-2431) vsftpd-3.0.2-25.amzn2.0.1.x86_64.rpm | Linux |
| vsftpd Security Update (ALAS2-2024-2431) vsftpd-sysvinit-3.0.2-25.amzn2.0.1.x86_64.rpm | Linux |
| sendmail Security Update (ALAS2023-2023-018) sendmail-8.17.1-5.amzn2023.0.4.x86_64.rpm | Linux |
| sendmail Security Update (ALAS2023-2023-018) sendmail-cf-8.17.1-5.amzn2023.0.4.noarch.rpm | Linux |
| sendmail Security Update (ALAS2023-2023-018) sendmail-doc-8.17.1-5.amzn2023.0.4.noarch.rpm | Linux |
| sendmail Security Update (ALAS2023-2023-018) sendmail-milter-8.17.1-5.amzn2023.0.4.x86_64.rpm | Linux |
| sendmail Security Update (ALAS2023-2023-018) sendmail-milter-devel-8.17.1-5.amzn2023.0.4.x86_64.rpm | Linux |
| Improper Certificate Validation Vulnerability (CVE-2021-3618) | NCM |
Patch Details
No records foundReferences
https://nvd.nist.gov/vuln/detail/CVE-2023-1234
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-1234