CVE-2017-1000415

NONE EPSS 38.2%
Published Jan 9, 20188y ago · Modified Jun 17, 20262w ago
Find Similar
Published Jan 9, 2018 8y ago
Last Modified Jun 17, 2026 2w ago

Description

MatrixSSL version 3.7.2 has an incorrect UTCTime date range validation in its X.509 certificate validation process resulting in some certificates have their expiration (beginning) year extended (delayed) by 100 years.

Threat Intelligence

EPSS Exploit Probability
38.2% percentile
Exploit & Patch Status
No Known Exploit
No Patch Available

Weaknesses 1

CWE-295

Affected Products 1

VendorProductVersionRange
matrixsslmatrixssl3.7.2any

References 2

  • ieee-security.org https://www.ieee-security.org/TC/SP2017/papers/231.pdf
    Third Party Advisory
  • youtube.com https://www.youtube.com/watch?v=FW--c_F_cY8
    Third Party Advisory

Remediation

No remediation data recorded yet

Check vendor advisories and the NVD entry for patch availability.