CVSS2
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:N/AC:L/Au:N/C:C/I:C/A:C
CVSS3
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
EPSS
Percentile
91.6%
MatrixSSL, version 3.8.5 and earlier, contains heap overflow, out-of-bounds read, and unallocated memory free operation vulnerabilities.
CWE-122: Heap-based Buffer Overflow - CVE-2016-6890
The Subject Alt Name field of X.509 certificates is not properly parsed. A specially crafted certificate may result in a heap-based buffer overflow and arbitrary code execution.
CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer - CVE-2016-6891
The ASN.1 Bit Field is not properly parsed. A specially crafted certificate may lead to a denial of service condition due to an out of bounds read in memory.
CWE-590: Free of Memory not on the Heap - CVE-2016-6892
The x509FreeExtensions()
function does not properly parse X.509 certificates. A specially crafted certificate may cause a free operation on unallocated memory, resulting in a denial of service condition.
The CVSS score below describes CVE-2016-6890. For more information about these vulnerabilities, contact the vendor at [email protected] or refer to the vendor release notes and the researcher’s blog.
By causing a server to parse a specially crafted X.509 certificate, a remote, unauthenticated attacker may be able to create a denial of service condition or execute arbitrary code in the context of the SSL stack.
Apply an update
The vendor has released version 3.8.6 to address these issues. Developers of embedded devices using MatrixSSL should provide firmware updates implementing the fix. Users in general should update to the latest release.
396440
Filter by status: All Affected Not Affected Unknown
Filter by content: __ Additional information available
__ Sort by: Status Alphabetical
Expand all
Javascript is disabled. Click here to view vendors.
Notified: August 26, 2016 Updated: October 11, 2016
Affected
We have not received a statement from the vendor.
We are not aware of further vendor information regarding this vulnerability.
MatrixSSL versions 3.8.5 and earlier are affected.
If you have feedback, comments, or additional information about this vulnerability, please send us [email](<mailto:[email protected]?Subject=VU%23396440 Feedback>).
Notified: October 11, 2016 Updated: October 13, 2016
Statement Date: October 11, 2016
Not Affected
CoreOS Linux is not affected by this vulnerability.
We are not aware of further vendor information regarding this vulnerability.
Notified: October 11, 2016 Updated: October 14, 2016
Statement Date: October 13, 2016
Not Affected
Lenovo is not affected by this issue.
We are not aware of further vendor information regarding this vulnerability.
Notified: October 11, 2016 Updated: October 11, 2016
Unknown
We have not received a statement from the vendor.
Notified: October 11, 2016 Updated: October 11, 2016
Unknown
We have not received a statement from the vendor.
Notified: October 11, 2016 Updated: October 11, 2016
Unknown
We have not received a statement from the vendor.
Notified: October 11, 2016 Updated: October 11, 2016
Unknown
We have not received a statement from the vendor.
Notified: October 11, 2016 Updated: October 11, 2016
Unknown
We have not received a statement from the vendor.
Notified: October 11, 2016 Updated: October 11, 2016
Unknown
We have not received a statement from the vendor.
Notified: October 11, 2016 Updated: October 11, 2016
Unknown
We have not received a statement from the vendor.
Notified: October 11, 2016 Updated: October 11, 2016
Unknown
We have not received a statement from the vendor.
Notified: October 11, 2016 Updated: October 11, 2016
Unknown
We have not received a statement from the vendor.
Notified: October 11, 2016 Updated: October 11, 2016
Unknown
We have not received a statement from the vendor.
Notified: October 11, 2016 Updated: October 11, 2016
Unknown
We have not received a statement from the vendor.
Notified: October 11, 2016 Updated: October 11, 2016
Unknown
We have not received a statement from the vendor.
Notified: October 11, 2016 Updated: October 11, 2016
Unknown
We have not received a statement from the vendor.
Notified: October 11, 2016 Updated: October 11, 2016
Unknown
We have not received a statement from the vendor.
Notified: October 11, 2016 Updated: October 11, 2016
Unknown
We have not received a statement from the vendor.
Notified: October 11, 2016 Updated: October 11, 2016
Unknown
We have not received a statement from the vendor.
Notified: October 11, 2016 Updated: October 11, 2016
Unknown
We have not received a statement from the vendor.
Notified: October 11, 2016 Updated: October 11, 2016
Unknown
We have not received a statement from the vendor.
Notified: October 11, 2016 Updated: October 11, 2016
Unknown
We have not received a statement from the vendor.
Notified: October 11, 2016 Updated: October 11, 2016
Unknown
We have not received a statement from the vendor.
Notified: October 11, 2016 Updated: October 11, 2016
Unknown
We have not received a statement from the vendor.
Notified: October 11, 2016 Updated: October 11, 2016
Unknown
We have not received a statement from the vendor.
Notified: October 11, 2016 Updated: October 11, 2016
Unknown
We have not received a statement from the vendor.
Notified: October 11, 2016 Updated: October 11, 2016
Unknown
We have not received a statement from the vendor.
Notified: October 11, 2016 Updated: October 11, 2016
Unknown
We have not received a statement from the vendor.
Notified: October 11, 2016 Updated: October 11, 2016
Unknown
We have not received a statement from the vendor.
Notified: October 11, 2016 Updated: October 11, 2016
Unknown
We have not received a statement from the vendor.
Notified: October 11, 2016 Updated: October 11, 2016
Unknown
We have not received a statement from the vendor.
Notified: October 11, 2016 Updated: October 11, 2016
Unknown
We have not received a statement from the vendor.
Notified: October 11, 2016 Updated: October 11, 2016
Unknown
We have not received a statement from the vendor.
Notified: October 11, 2016 Updated: October 11, 2016
Unknown
We have not received a statement from the vendor.
Notified: October 11, 2016 Updated: October 11, 2016
Unknown
We have not received a statement from the vendor.
Notified: October 11, 2016 Updated: October 11, 2016
Unknown
We have not received a statement from the vendor.
Notified: October 11, 2016 Updated: October 11, 2016
Unknown
We have not received a statement from the vendor.
Notified: October 11, 2016 Updated: October 11, 2016
Unknown
We have not received a statement from the vendor.
Notified: October 11, 2016 Updated: October 11, 2016
Unknown
We have not received a statement from the vendor.
Notified: October 11, 2016 Updated: October 11, 2016
Unknown
We have not received a statement from the vendor.
Notified: October 11, 2016 Updated: October 11, 2016
Unknown
We have not received a statement from the vendor.
Notified: October 11, 2016 Updated: October 11, 2016
Unknown
We have not received a statement from the vendor.
Notified: October 11, 2016 Updated: October 11, 2016
Unknown
We have not received a statement from the vendor.
Notified: October 11, 2016 Updated: October 11, 2016
Unknown
We have not received a statement from the vendor.
Notified: October 11, 2016 Updated: October 11, 2016
Unknown
We have not received a statement from the vendor.
Notified: October 11, 2016 Updated: October 11, 2016
Unknown
We have not received a statement from the vendor.
Notified: October 11, 2016 Updated: October 11, 2016
Unknown
We have not received a statement from the vendor.
Notified: October 11, 2016 Updated: October 11, 2016
Unknown
We have not received a statement from the vendor.
Notified: October 11, 2016 Updated: October 11, 2016
Unknown
We have not received a statement from the vendor.
Notified: October 11, 2016 Updated: October 11, 2016
Unknown
We have not received a statement from the vendor.
Notified: October 11, 2016 Updated: October 11, 2016
Unknown
We have not received a statement from the vendor.
Notified: October 11, 2016 Updated: October 11, 2016
Unknown
We have not received a statement from the vendor.
Notified: October 11, 2016 Updated: October 11, 2016
Unknown
We have not received a statement from the vendor.
Notified: October 11, 2016 Updated: October 11, 2016
Unknown
We have not received a statement from the vendor.
Notified: October 11, 2016 Updated: October 11, 2016
Unknown
We have not received a statement from the vendor.
Notified: October 11, 2016 Updated: October 11, 2016
Unknown
We have not received a statement from the vendor.
Notified: October 11, 2016 Updated: October 11, 2016
Unknown
We have not received a statement from the vendor.
Notified: October 11, 2016 Updated: October 11, 2016
Unknown
We have not received a statement from the vendor.
Notified: October 11, 2016 Updated: October 11, 2016
Unknown
We have not received a statement from the vendor.
Notified: October 11, 2016 Updated: October 11, 2016
Unknown
We have not received a statement from the vendor.
Notified: October 11, 2016 Updated: October 11, 2016
Unknown
We have not received a statement from the vendor.
Notified: October 11, 2016 Updated: October 11, 2016
Unknown
We have not received a statement from the vendor.
Notified: October 11, 2016 Updated: October 11, 2016
Unknown
We have not received a statement from the vendor.
Notified: October 11, 2016 Updated: October 11, 2016
Unknown
We have not received a statement from the vendor.
Notified: October 11, 2016 Updated: October 11, 2016
Unknown
We have not received a statement from the vendor.
Notified: October 11, 2016 Updated: October 11, 2016
Unknown
We have not received a statement from the vendor.
Notified: October 11, 2016 Updated: October 11, 2016
Unknown
We have not received a statement from the vendor.
Notified: October 11, 2016 Updated: October 11, 2016
Unknown
We have not received a statement from the vendor.
Notified: October 11, 2016 Updated: October 11, 2016
Unknown
We have not received a statement from the vendor.
Notified: October 11, 2016 Updated: October 11, 2016
Unknown
We have not received a statement from the vendor.
Notified: October 11, 2016 Updated: October 11, 2016
Unknown
We have not received a statement from the vendor.
Notified: October 11, 2016 Updated: October 11, 2016
Unknown
We have not received a statement from the vendor.
Notified: October 11, 2016 Updated: October 11, 2016
Unknown
We have not received a statement from the vendor.
Notified: October 11, 2016 Updated: October 11, 2016
Unknown
We have not received a statement from the vendor.
Notified: October 11, 2016 Updated: October 11, 2016
Unknown
We have not received a statement from the vendor.
Notified: October 11, 2016 Updated: October 11, 2016
Unknown
We have not received a statement from the vendor.
Notified: October 11, 2016 Updated: October 11, 2016
Unknown
We have not received a statement from the vendor.
Notified: October 11, 2016 Updated: October 11, 2016
Unknown
We have not received a statement from the vendor.
Notified: October 11, 2016 Updated: October 11, 2016
Unknown
We have not received a statement from the vendor.
Notified: October 11, 2016 Updated: October 11, 2016
Unknown
We have not received a statement from the vendor.
Notified: October 11, 2016 Updated: October 11, 2016
Unknown
We have not received a statement from the vendor.
Notified: October 11, 2016 Updated: October 11, 2016
Unknown
We have not received a statement from the vendor.
Notified: October 11, 2016 Updated: October 11, 2016
Unknown
We have not received a statement from the vendor.
Notified: October 11, 2016 Updated: October 11, 2016
Unknown
We have not received a statement from the vendor.
Notified: October 11, 2016 Updated: October 11, 2016
Unknown
We have not received a statement from the vendor.
Notified: October 11, 2016 Updated: October 11, 2016
Unknown
We have not received a statement from the vendor.
Notified: October 11, 2016 Updated: October 11, 2016
Unknown
We have not received a statement from the vendor.
Notified: October 11, 2016 Updated: October 11, 2016
Unknown
We have not received a statement from the vendor.
Notified: October 11, 2016 Updated: October 11, 2016
Unknown
We have not received a statement from the vendor.
Notified: October 11, 2016 Updated: October 11, 2016
Unknown
We have not received a statement from the vendor.
Notified: October 11, 2016 Updated: October 11, 2016
Unknown
We have not received a statement from the vendor.
Notified: October 11, 2016 Updated: October 11, 2016
Unknown
We have not received a statement from the vendor.
Notified: October 11, 2016 Updated: October 11, 2016
Unknown
We have not received a statement from the vendor.
Notified: October 11, 2016 Updated: October 11, 2016
Unknown
We have not received a statement from the vendor.
Notified: October 11, 2016 Updated: October 11, 2016
Unknown
We have not received a statement from the vendor.
Notified: October 11, 2016 Updated: October 11, 2016
Unknown
We have not received a statement from the vendor.
Notified: October 11, 2016 Updated: October 11, 2016
Unknown
We have not received a statement from the vendor.
Notified: October 11, 2016 Updated: October 11, 2016
Unknown
We have not received a statement from the vendor.
Notified: October 11, 2016 Updated: October 11, 2016
Unknown
We have not received a statement from the vendor.
Notified: October 11, 2016 Updated: October 11, 2016
Unknown
We have not received a statement from the vendor.
View all 100 vendors __View less vendors __
Group | Score | Vector |
---|---|---|
Base | 10 | AV:N/AC:L/Au:N/C:C/I:C/A:C |
Temporal | 7.8 | E:POC/RL:OF/RC:C |
Environmental | 5.9 | CDP:ND/TD:M/CR:ND/IR:ND/AR:ND |
Thanks to Craig Young of Tripwire for reporting these vulnerabilities.
This document was written by Joel Land.
CVE IDs: | CVE-2016-6890, CVE-2016-6891, CVE-2016-6892 |
---|---|
Date Public: | 2016-10-10 Date First Published: |
www.matrixssl.org/blog/releases/matrixssl_3_8_6
www.tripwire.com/state-of-security/security-data-protection/cyber-security/flawed-matrixssl-code-highlights-need-for-better-iot-update-practices/
cwe.mitre.org/data/definitions/119.html
cwe.mitre.org/data/definitions/122.html
cwe.mitre.org/data/definitions/590.html
github.com/matrixssl/matrixssl/blob/master/CHANGES.md
CVSS2
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:N/AC:L/Au:N/C:C/I:C/A:C
CVSS3
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
EPSS
Percentile
91.6%