CVE-2022-24968
Man-in-the-middle attack due to improper validation of certificate in mellium.im/xmpp
5.9
MEDIUM
CVSS 3.1
EPSS 0.18%
描述
Websocket client connections are vulnerable to man-in-the-middle attacks via DNS spoofing. When looking up a WSS endpoint using a DNS TXT record, the server TLS certificate is incorrectly validated using the name of the server returned by the TXT record request, not the name of the the server being connected to. This permits any attacker that can spoof a DNS record to redirect the user to a server of their choosing. Providing a *tls.Config with a ServerName field set to the correct destination hostname will avoid this issue.
如何修補 CVE-2022-24968
要修補 CVE-2022-24968,請將受影響套件升級到下列已修補版本。
- —升級至 0.21.1 或更新版本
- —升級至 0.21.1 或更新版本
- —升級至 0.21.1 或更新版本
CVE-2022-24968 正在被利用嗎?
低 — EPSS 為 0.2%,目前沒有觀察到大規模利用活動。
受影響套件(3)
- >= 0.18.0, < 0.21.1
- >= 0.18.0, < 0.21.1
- >= 0.18.0, < 0.21.1
CVSS 分數
| 來源 | 版本 | 嚴重程度 | 向量 |
|---|---|---|---|
| osv | CVSS 3.1 | MEDIUM5.9 | CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:H/A:N |