canonical ubuntu-linux CVE-2022-1343 vulnerability in Canonical and Other Products
Published on May 3, 2022

OCSP_basic_verify may incorrectly verify the response signing certificate

product logo product logo product logo
The function `OCSP_basic_verify` verifies the signer certificate on an OCSP response. In the case where the (non-default) flag OCSP_NOCHECKS is used then the response will be positive (meaning a successful verification) even in the case where the response signing certificate fails to verify. It is anticipated that most users of `OCSP_basic_verify` will not use the OCSP_NOCHECKS flag. In this case the `OCSP_basic_verify` function will return a negative value (indicating a fatal error) in the case of a certificate verification failure. The normal expected return value in this case would be 0. This issue also impacts the command line OpenSSL "ocsp" application. When verifying an ocsp response with the "-no_cert_checks" option the command line application will report that the verification is successful even though it has in fact failed. In this case the incorrect successful response will also be accompanied by error messages showing the failure and contradicting the apparently successful result. Fixed in OpenSSL 3.0.3 (Affected 3.0.0,3.0.1,3.0.2).

NVD

Vulnerability Analysis

CVE-2022-1343 can be exploited with network access, and does not require authorization privileges or user interaction. This vulnerability is considered to have a low attack complexity. The potential impact of an exploit of this vulnerability is considered to have no impact on confidentiality, with no impact on integrity, and no impact on availability.

Attack Vector:
NETWORK
Attack Complexity:
LOW
Privileges Required:
NONE
User Interaction:
NONE
Scope:
UNCHANGED
Confidentiality Impact:
NONE
Integrity Impact:
LOW
Availability Impact:
NONE

Weakness Type

Improper Certificate Validation

The software does not validate, or incorrectly validates, a certificate. When a certificate is invalid or malicious, it might allow an attacker to spoof a trusted entity by interfering in the communication path between the host and client. The software might connect to a malicious host while believing it is a trusted host, or the software might be deceived into accepting spoofed data that appears to originate from a trusted host.


Products Associated with CVE-2022-1343

You can be notified by email with stack.watch whenever vulnerabilities like CVE-2022-1343 are published in these products:

Canonical Ubuntu Linux
 
OpenSSL
 
NetApp Santricity Smi S Provider
 
NetApp Clustered Data Ontap
 
NetApp Smi S Provider
 
NetApp Clustered Data Ontap Antivirus Connector
 
NetApp Solidfire Hci Management Node
 
NetApp Solidfire Enterprise Sds Hci Storage Node
 
NetApp Active Iq Unified Manager
 
NetApp Snapmanager
 

Affected Versions

OpenSSL Version Fixed in OpenSSL 3.0.3 (Affected 3.0.0,3.0.1,3.0.2) is affected by CVE-2022-1343

Exploit Probability

EPSS
0.15%
Percentile
34.86%

EPSS (Exploit Prediction Scoring System) scores estimate the probability that a vulnerability will be exploited in the wild within the next 30 days. The percentile shows you how this score compares to all other vulnerabilities.