Improper Validation of Certificate with Host Mismatch

CVE-2022-4967

Medium

6.5/10

Summary

In strongSwan versions, 5.9.2rc1 through 5.9.5 and 6.0dr6 through 6.0dr13 are affected by authorization bypass through improper validation of certificate with host mismatch. When certificates are used to authenticate clients in TLS-based EAP methods, the IKE or EAP identity supplied by a client is not enforced to be contained in the client's certificate. So clients can authenticate with any trusted certificate and claim an arbitrary IKE/EAP identity as their own. This is problematic if the identity is used to make policy decisions.

Attack Complexity: LOW
Attack Vector: NETWORK
Integrity Impact: NONE
Scope: UNCHANGED
User Interaction: NONE
Privileges Required: LOW
Confidentiality Impact: HIGH
Availability Impact: NONE

CWE-297 - Improper Validation of Certificate with Host Mismatch

The software communicates with a host that provides a certificate, but the software does not properly ensure that the certificate is actually associated with that host.

References

Advisory Timeline

Published May 14, 2024

Improper Validation of Certificate with Host Mismatch

CVE-2022-4967

Summary

CWE-297 - Improper Validation of Certificate with Host Mismatch

References

Advisory Timeline

ChainJacking

JetBrains IDE

KICS SaaS