CVE-2020-7042

CVE Database · CVE-2020-7042

CVE-2020-7042

· MEDIUMModified

CVSS v3.1

5.3

EPSS

1.54%

Published

Feb 27, 2020

Modified

Nov 21, 2024

Public PoC / Exploit (1)

All weaponized →

TrickestTrickest PoC index

Links to public security research (Exploit-DB, Nuclei, Trickest, GitHub) for defensive use only.

Description

An issue was discovered in openfortivpn 1.11.0 when used with OpenSSL 1.0.2 or later. tunnel.c mishandles certificate validation because the hostname check operates on uninitialized memory. The outcome is that a valid certificate is never accepted (only a malformed certificate may be accepted).

CVSS Vector

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N

Weaknesses (CWE)

CWE-295CWE-908

Affected Products (7)

openfortivpn_project · openfortivpn (up to 1.12.0)vulnerable

openssl · openssl

fedoraproject · fedoravulnerable

opensuse · backports_slevulnerable

opensuse · leapvulnerable

References (16)

http://lists.opensuse.org/opensuse-security-announce/2020-03/msg00009.html