1. Home
  2. CVE Database
  3. CVE-2017-3735
MEDIUM · 5.3

CVE-2017-3735

While parsing an IPAddressFamily extension in an X.509 certificate, it is possible to do a one-byte overread. This would result in an incorrect text display of the certificate. This bug has been prese...

Vulnerability Description

While parsing an IPAddressFamily extension in an X.509 certificate, it is possible to do a one-byte overread. This would result in an incorrect text display of the certificate. This bug has been present since 2006 and is present in all versions of OpenSSL before 1.0.2m and 1.1.0g.

CVSS Score

5.3

MEDIUM

CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
NONE
Scope
UNCHANGED
Confidentiality
NONE
Integrity
LOW
Availability
NONE

Affected Products

VendorProductVersions
OpensslOpenssl0.9.7j
DebianDebian Linux8.0

Related Weaknesses (CWE)

CWE-119

References

FAQ

What is CVE-2017-3735?

CVE-2017-3735 is a vulnerability with a CVSS score of 5.3 (MEDIUM). While parsing an IPAddressFamily extension in an X.509 certificate, it is possible to do a one-byte overread. This would result in an incorrect text display of the certificate. This bug has been prese...

How severe is CVE-2017-3735?

CVE-2017-3735 has been rated MEDIUM with a CVSS base score of 5.3/10. Review the CVSS metrics above for detailed severity breakdown.

Is there a patch for CVE-2017-3735?

Check the references section above for vendor advisories and patch information. Affected products include: Openssl Openssl, Debian Debian Linux.