CVE-2017-1000415
NONE EPSS 38.2%
Published Jan 9, 20188y ago · Modified Jun 17, 20262w ago
Published Jan 9, 2018 8y ago
Last Modified Jun 17, 2026 2w ago
Description
MatrixSSL version 3.7.2 has an incorrect UTCTime date range validation in its X.509 certificate validation process resulting in some certificates have their expiration (beginning) year extended (delayed) by 100 years.
Threat Intelligence
EPSS Exploit Probability
38.2% percentile
Exploit & Patch Status
No Known Exploit
No Patch Available
Weaknesses 1
CWE-295
Affected Products 1
| Vendor | Product | Version | Range |
|---|---|---|---|
| matrixssl | matrixssl | 3.7.2 | any |
References 2
- ieee-security.org https://www.ieee-security.org/TC/SP2017/papers/231.pdf
- youtube.com https://www.youtube.com/watch?v=FW--c_F_cY8
Remediation
No remediation data recorded yet
Check vendor advisories and the NVD entry for patch availability.