CVE-2021-3712

CWE-125Out-of-bounds Read27 documents11 sources
Severity
7.4HIGH
EPSS
0.4%
top 38.49%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
25
Mcafee Epolicy OrchestratorOpenssl OpensslOracle Essbase+22 more
Timeline
PublishedAug 24
Latest updateNov 26

Description

ASN.1 strings are represented internally within OpenSSL as an ASN1_STRING structure which contains a buffer holding the string data and a field holding the buffer length. This contrasts with normal C strings which are repesented as a buffer for the string data which is terminated with a NUL (0) byte. Although not a strict requirement, ASN.1 strings that are parsed using OpenSSL's own "d2i" functions (and other similar parsing functions) as well as any string whose value has been set with the ASN

CVSS vector

CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:N/A:HExploitability: 2.2 | Impact: 5.2

Affected Packages29 packages

crates.ioopenssl-src0.0.0-0111.16.0+1
NVDopenssl/openssl1.0.21.0.2za+1
Debianopenssl< 1.1.1k-1+deb11u1+3
Ubuntuopenssl< 1.0.1f-1ubuntu2.27+esm4+2

Also affects: Debian Linux 10.0, 11.0, 9.0

Patches

Patch: cert-portal.siemens.comPatch: cert-portal.siemens.comPatch: www.oracle.com

🔴Vulnerability Details

10
GHSA
Read buffer overruns processing ASN.1 strings2022-05-24
OSV
Read buffer overruns processing ASN.1 strings2022-05-24
OSV
edk2 vulnerabilities2021-09-23
OSV
openssl regression2021-09-01
OSV
openssl vulnerability2021-08-26

📋Vendor Advisories

15
Ubuntu
EDK II vulnerabilities2025-11-26
Oracle
Oracle Oracle Hyperion Risk Matrix: Installation (OpenSSL) — CVE-2021-37122025-10-15
Oracle
Oracle Oracle Siebel CRM Risk Matrix: Siebel Core - Server Infrastructure (OpenSSL) — CVE-2021-37122023-04-15
Oracle
Oracle Oracle Communications Risk Matrix: CNC Console (OpenSSL) — CVE-2021-37122022-04-15
Oracle
Oracle Oracle Secure Backup Risk Matrix: Oracle Secure Backup (OpenSSL) — CVE-2021-37122022-01-15

💬Community

1
HackerOne
Node.js Certificate Verification Bypass via String Injection2022-02-10