Multiple vulnerabilities in Botan
| Risk | Medium |
| Patch available | YES |
| Number of vulnerabilities | 2 |
| CVE-ID | CVE-2024-39312 CVE-2024-34702 |
| CWE-ID | CWE-295 CWE-405 |
| Exploitation vector | Network |
| Public exploit | Public exploit code for vulnerability #2 is available. |
| Vulnerable software |
Botan Universal components / Libraries / Libraries used by multiple products |
| Vendor | Randombit |
Security Bulletin
This security bulletin contains information about 2 vulnerabilities.
1) Improper Certificate Validation
EUVDB-ID: #VU94669
Risk: Medium
CVSSv4.0: 2.7 [CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:L/VA:N/SC:N/SI:N/SA:N/E:U/U:Green]
CVE-ID: CVE-2024-39312
CWE-ID:
CWE-295 - Improper Certificate Validation
Exploit availability: No
DescriptionThe vulnerability allows a remote attacker to compromise the target system.
The vulnerability exists due to the Name Constraint Decoding bug. A remote attacker can cause the target system to accept arbitrary certificates.
MitigationInstall updates from vendor's website.
Vulnerable software versionsBotan: 2.19.0 - 3.4.0
CPE2.3- cpe:2.3:a:randombit:botan:2.19.4:*:*:*:*:*:*:*
- cpe:2.3:a:randombit:botan:3.0.0:*:*:*:*:*:*:*
- cpe:2.3:a:randombit:botan:3.1.1:*:*:*:*:*:*:*
- cpe:2.3:a:randombit:botan:3.2.0:*:*:*:*:*:*:*
- cpe:2.3:a:randombit:botan:3.3.0:*:*:*:*:*:*:*
- cpe:2.3:a:randombit:botan:3.4.0:*:*:*:*:*:*:*
https://github.com/randombit/botan/security/advisories/GHSA-jp24-56jm-gg86
Q & A
Can this vulnerability be exploited remotely?
Yes. This vulnerability can be exploited by a remote non-authenticated attacker via the Internet.
Is there known malware, which exploits this vulnerability?
No. We are not aware of malware exploiting this vulnerability.
2) Asymmetric Resource Consumption (Amplification)
EUVDB-ID: #VU94671
Risk: Medium
CVSSv4.0: 5.5 [CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:L/SC:N/SI:N/SA:N/E:P/U:Green]
CVE-ID: CVE-2024-34702
CWE-ID:
CWE-405 - Asymmetric Resource Consumption (Amplification)
Exploit availability: No
DescriptionThe vulnerability allows a remote attacker to perform a denial of service (DoS) attack.
The vulnerability exists due to excessive name constraints. A remote attacker can trigger resource exhaustion and perform a denial of service (DoS) attack.
MitigationInstall updates from vendor's website.
Vulnerable software versionsBotan: 2.19.0 - 3.4.0
CPE2.3- cpe:2.3:a:randombit:botan:2.19.4:*:*:*:*:*:*:*
- cpe:2.3:a:randombit:botan:3.0.0:*:*:*:*:*:*:*
- cpe:2.3:a:randombit:botan:3.1.1:*:*:*:*:*:*:*
- cpe:2.3:a:randombit:botan:3.2.0:*:*:*:*:*:*:*
- cpe:2.3:a:randombit:botan:3.3.0:*:*:*:*:*:*:*
- cpe:2.3:a:randombit:botan:3.4.0:*:*:*:*:*:*:*
https://github.com/randombit/botan/security/advisories/GHSA-5gg9-hqpr-r58j
https://github.com/randombit/botan/pull/4034
https://github.com/randombit/botan/pull/4045
https://github.com/randombit/botan/pull/4047
https://github.com/randombit/botan/pull/4052
https://github.com/randombit/botan/pull/4186
https://github.com/randombit/botan/pull/4187
https://github.com/randombit/botan/commit/21dccc8fef18c165ba3301d850ac61521f85637e
https://github.com/randombit/botan/commit/39535f13c322f56aa3da2f44b2b6abb8619a82ac
https://github.com/randombit/botan/commit/477822a2d10f02d8ba46c9d8a5132f25843f5cc1
https://github.com/randombit/botan/commit/7606d70d3a2ac7114476ec2651ca0243c4536fdf
https://github.com/randombit/botan/commit/c3264821b9f6286ee4e6e3e06826f6b7177e6d41
https://github.com/randombit/botan/commit/ff704b12e6fa351aaedd07bffdc91722e84586b8
Q & A
Can this vulnerability be exploited remotely?
Yes. This vulnerability can be exploited by a remote non-authenticated attacker via the Internet.
Is there known malware, which exploits this vulnerability?
No. We are not aware of malware exploiting this vulnerability. However, proof of concept for this vulnerability is available.
