CVE-2016-7141 — HIGH (7.5) — White Hats Nepal

Q: How severe is CVE-2016-7141?

CVE-2016-7141 has been rated HIGH with a CVSS base score of 7.5/10. Review the CVSS metrics above for detailed severity breakdown.

Q: Is there a patch for CVE-2016-7141?

Check the references section above for vendor advisories and patch information. Affected products include: Opensuse Leap, Haxx Libcurl.

Vulnerability Description

curl and libcurl before 7.50.2, when built with NSS and the libnsspem.so library is available at runtime, allow remote attackers to hijack the authentication of a TLS connection by leveraging reuse of a previously loaded client certificate from file for a connection for which no certificate has been set, a different vulnerability than CVE-2016-5420.

CVSS Score

7.5

HIGH

CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality

NONE

Integrity

HIGH

Availability

NONE

Affected Products

Vendor	Product	Versions
Opensuse	Leap	42.1
Haxx	Libcurl	<= 7.50.1

Related Weaknesses (CWE)

CWE-287

References

http://lists.opensuse.org/opensuse-updates/2016-09/msg00094.htmlThird Party Advisory
http://rhn.redhat.com/errata/RHSA-2016-2575.html
http://rhn.redhat.com/errata/RHSA-2016-2957.html
http://www.oracle.com/technetwork/security-advisory/cpuoct2018-4428296.html
http://www.securityfocus.com/bid/92754Third Party AdvisoryVDB Entry
http://www.securitytracker.com/id/1036739Third Party AdvisoryVDB Entry
https://access.redhat.com/errata/RHSA-2018:3558
https://bugzilla.redhat.com/show_bug.cgi?id=1373229Issue Tracking
https://curl.haxx.se/docs/adv_20160907.htmlPatchVendor Advisory
https://github.com/curl/curl/commit/curl-7_50_2~32Issue TrackingPatch
https://lists.debian.org/debian-lts-announce/2018/11/msg00005.html
https://security.gentoo.org/glsa/201701-47
http://lists.opensuse.org/opensuse-updates/2016-09/msg00094.htmlThird Party Advisory
http://rhn.redhat.com/errata/RHSA-2016-2575.html
http://rhn.redhat.com/errata/RHSA-2016-2957.html

FAQ

What is CVE-2016-7141?

CVE-2016-7141 is a vulnerability with a CVSS score of 7.5 (HIGH). curl and libcurl before 7.50.2, when built with NSS and the libnsspem.so library is available at runtime, allow remote attackers to hijack the authentication of a TLS connection by leveraging reuse of...

How severe is CVE-2016-7141?

CVE-2016-7141 has been rated HIGH with a CVSS base score of 7.5/10. Review the CVSS metrics above for detailed severity breakdown.

Is there a patch for CVE-2016-7141?

Check the references section above for vendor advisories and patch information. Affected products include: Opensuse Leap, Haxx Libcurl.