#VU99545 Improper Check for Certificate Revocation in FreeBSD - CVE-2024-45289

Cybersecurity Help s.r.o.

Published: 2024-10-31

Vulnerability identifier: #VU99545

Vulnerability risk: Low

CVSSv4.0: 0.5 [CVSS:4.0/AV:N/AC:L/AT:P/PR:N/UI:A/VC:L/VI:L/VA:N/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2024-45289

CWE-ID: CWE-299

Exploitation vector: Network

Exploit availability: No

Vulnerable software:
FreeBSD
Operating systems & Components / Operating system

Vendor: FreeBSD Foundation

Description

The vulnerability allows a remote attacker to perform MitM attack.

The vulnerability exists due to an error in fetch(1) when handling certificate revocation file passed via the "--crl" option. The environment variable name used by fetch(1) to pass the filename to the library was incorrect, in effect ignoring the option. As a result, the library will still connect to a host presenting a certificate that was included into the revocation list.

Mitigation
Install updates from vendor's website.

Vulnerable software versions

FreeBSD: 13.3 - 14.1

External links
https://www.freebsd.org/security/advisories/FreeBSD-SA-24:19.fetch.asc

Q & A

Can this vulnerability be exploited remotely?

Yes. This vulnerability can be exploited by a remote non-authenticated attacker via the Internet.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

Latest bulletins with this vulnerability

Certificate revocation failure in FreeBSD fetch