CVE-2021-44532

CWE-296 CWE-295 — Improper Certificate Validation7 documents7 sources

Severity

5.3MEDIUM

EPSS

0.1%

top 67.27%

CISA KEV

Not in KEV

Exploit

No known exploits

Affected products

Nodejs Node Nodejs Node.js Oracle Mysql Cluster +7 more

Timeline

PublishedFeb 24

Latest updateFeb 25

Description

Node.js < 12.22.9, < 14.18.3, < 16.13.2, and < 17.3.1 converts SANs (Subject Alternative Names) to a string format. It uses this string to check peer certificates against hostnames when validating connections. The string format was subject to an injection vulnerability when name constraints were used within a certificate chain, allowing the bypass of these name constraints.Versions of Node.js with the fix for this escape SANs containing the problematic characters in order to prevent the injectio…

CVSS vector

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:NExploitability: 3.9 | Impact: 1.4

Affected Packages10 packages

▶CVEListV5nodejs/node4.0 — 4.*+13

▶NVDnodejs/node.js14.0.0 — 14.18.3+3

▶Debiannodejs< 12.22.12~dfsg-1~deb11u1+3

▶NVDoracle/mysql_server8.0.0 — 8.0.28+1

▶NVDoracle/mysql_cluster8.0.29

Also affects: Debian Linux 11.0

Patches

Patch: www.oracle.com ↗Patch: www.oracle.com ↗

🔴Vulnerability Details

GHSA

GHSA-jg6g-8j59-vr29: Node↗2022-02-25

▶

OSV

CVE-2021-44532: Node↗2022-02-24

▶

CVEList

CVE-2021-44532: Node↗2022-02-24

▶

📋Vendor Advisories

Microsoft

Node.js < 12.22.9 < 14.18.3 < 16.13.2 and < 17.3.1 converts SANs (Subject Alternative Names) to a string format. It uses this string to check peer certificates against hostnames when validating connec↗2022-02-08

▶

Red Hat

nodejs: Certificate Verification Bypass via String Injection↗2022-01-10

▶

Debian

CVE-2021-44532: nodejs - Node.js < 12.22.9, < 14.18.3, < 16.13.2, and < 17.3.1 converts SANs (Subject Alt...↗2021

▶