CVE-2020-7043
published 2020-02-27CVE-2020-7043: An issue was discovered in openfortivpn 1.11.0 when used with OpenSSL before 1.0.2. tunnel.c mishandles certificate validation because hostname comparisons do…
critical9.1CVSS 3.1
AVNACLPRNUINSUCHIHAN
An issue was discovered in openfortivpn 1.11.0 when used with OpenSSL before 1.0.2. tunnel.c mishandles certificate validation because hostname comparisons do not consider '\0' characters, as demonstrated by a good.example.com\x00evil.example.com attack.
Affected
11 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| debian | openfortivpn | < openfortivpn 1.12.0-1 (bookworm) | openfortivpn 1.12.0-1 (bookworm) |
| fedoraproject | fedora | — | — |
| fedoraproject | fedora | — | — |
| fedoraproject | fedora | — | — |
| openfortivpn_project | openfortivpn | < 1.12.0 | 1.12.0 |
| openfortivpn_project | openfortivpn | >= 0 < 1.12.0-1 | 1.12.0-1 |
| openfortivpn_project | openfortivpn | >= 0 < 1.12.0-1 | 1.12.0-1 |
| openfortivpn_project | openfortivpn | >= 0 < 1.12.0-1 | 1.12.0-1 |
| openfortivpn_project | openfortivpn | >= 0 < 1.12.0-1 | 1.12.0-1 |
| opensuse | backports_sle | — | — |
| opensuse | leap | — | — |
CVSS provenance
nvdv3.19.1CRITICALCVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:N
osv9.1CRITICAL