CVE-2023-5422 — Improper Certificate Validation in AG Otrs

CWE-295 — Improper Certificate Validation4 documents4 sources

Severity

9.1CRITICALNVD

CNA8.7

EPSS

0.2%

top 51.99%

CISA KEV

Not in KEV

Exploit

No known exploits

Affected products

Otrs AG Otrs Otrs Otrs AG Community Edition

Timeline

PublishedOct 16

Description

The functions to fetch e-mail via POP3 or IMAP as well as sending e-mail via SMTP use OpenSSL for static SSL or TLS based communication. As the SSL_get_verify_result() function is not used the certificated is trusted always and it can not be ensured that the certificate satisfies all necessary security requirements. This could allow an attacker to use an invalid certificate to claim to be a trusted host, use expired certificates, or conduct other attacks that could be detected if the certificat…

CVSS vector

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:NExploitability: 3.9 | Impact: 5.2

Affected Packages3 packages

▶CVEListV5otrs_ag/community_edition6.0.x — 6.0.34

▶NVDotrs/otrs7.0.0 — 7.0.47+2

▶CVEListV5otrs_ag/otrs7.0.x — 7.0.47+1

🔴Vulnerability Details

GHSA

GHSA-qxp6-m9jg-58rw: The functions to fetch e-mail via POP3 or IMAP as well as sending e-mail via SMTP use OpenSSL for static SSL or TLS based communication↗2023-10-16

▶

OSV

CVE-2023-5422: The functions to fetch e-mail via POP3 or IMAP as well as sending e-mail via SMTP use OpenSSL for static SSL or TLS based communication↗2023-10-16

▶

CVEList

SSL Certificates are not checked for E-Mail Handling↗2023-10-16

▶