Vulnerability Database

296,147

Total vulnerabilities in the database

CVE-2017-3735

While parsing an IPAddressFamily extension in an X.509 certificate, it is possible to do a one-byte overread. This would result in an incorrect text display of the certificate. This bug has been present since 2006 and is present in all versions of OpenSSL before 1.0.2m and 1.1.0g.

  • Published: Aug 28, 2017
  • Updated: Apr 13, 2023
  • CVE: CVE-2017-3735
  • Severity: Medium
  • Exploit:

CVSS v3:

  • Severity: Medium
  • Score: 5.3
  • AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N

CVSS v2:

  • Severity: Medium
  • Score: 5
  • AV:N/AC:L/Au:N/C:N/I:P/A:N

CWEs:

Software From Fixed in
openssl / openssl 1.1.0e 1.1.0e.x
openssl / openssl 0.9.8ze 0.9.8ze.x
openssl / openssl 1.0.2a 1.0.2a.x
openssl / openssl 0.9.8b 0.9.8b.x
openssl / openssl 1.0.1j 1.0.1j.x
openssl / openssl 0.9.7l 0.9.7l.x
openssl / openssl 0.9.8m 0.9.8m.x
openssl / openssl 1.1.0f 1.1.0f.x
openssl / openssl 1.0.0n 1.0.0n.x
openssl / openssl 1.0.1-beta2 1.0.1-beta2.x
openssl / openssl 0.9.8c 0.9.8c.x
openssl / openssl 1.0.0c 1.0.0c.x
openssl / openssl 1.0.0i 1.0.0i.x
openssl / openssl 1.0.0-beta1 1.0.0-beta1.x
openssl / openssl 1.0.1h 1.0.1h.x
openssl / openssl 0.9.8n 0.9.8n.x
openssl / openssl 1.0.0-beta2 1.0.0-beta2.x
openssl / openssl 0.9.8p 0.9.8p.x
openssl / openssl 1.0.2e 1.0.2e.x
openssl / openssl 1.0.2j 1.0.2j.x
openssl / openssl 1.0.0m 1.0.0m.x
openssl / openssl 1.0.2b 1.0.2b.x
openssl / openssl 1.0.1c 1.0.1c.x
openssl / openssl 0.9.7j 0.9.7j.x
openssl / openssl 0.9.8e 0.9.8e.x
openssl / openssl 0.9.8u 0.9.8u.x
openssl / openssl 0.9.8za 0.9.8za.x
openssl / openssl 1.0.1g 1.0.1g.x
openssl / openssl 0.9.8g 0.9.8g.x
openssl / openssl 1.0.0h 1.0.0h.x
openssl / openssl 0.9.8k 0.9.8k.x
openssl / openssl 0.9.8m-beta1 0.9.8m-beta1.x
openssl / openssl 0.9.8d 0.9.8d.x
openssl / openssl 1.0.0-beta3 1.0.0-beta3.x
openssl / openssl 1.0.0e 1.0.0e.x
openssl / openssl 1.0.1-beta3 1.0.1-beta3.x
openssl / openssl 1.0.0f 1.0.0f.x
openssl / openssl 0.9.8j 0.9.8j.x
openssl / openssl 1.1.0c 1.1.0c.x
openssl / openssl 1.0.0d 1.0.0d.x
openssl / openssl 0.9.7k 0.9.7k.x
openssl / openssl 1.0.0j 1.0.0j.x
openssl / openssl 0.9.8s 0.9.8s.x
openssl / openssl 1.0.0p 1.0.0p.x
openssl / openssl 1.0.1a 1.0.1a.x
openssl / openssl 1.0.1-beta1 1.0.1-beta1.x
openssl / openssl 1.0.0s 1.0.0s.x
openssl / openssl 1.0.2h 1.0.2h.x
openssl / openssl 1.0.0o 1.0.0o.x
openssl / openssl 0.9.8l 0.9.8l.x
openssl / openssl 0.9.8zc 0.9.8zc.x
openssl / openssl 1.0.1d 1.0.1d.x
openssl / openssl 1.0.0k 1.0.0k.x
openssl / openssl 0.9.8r 0.9.8r.x
openssl / openssl 1.0.2c 1.0.2c.x
openssl / openssl 0.9.8t 0.9.8t.x
openssl / openssl 1.0.0-beta4 1.0.0-beta4.x
openssl / openssl 0.9.8z 0.9.8z.x
openssl / openssl 1.1.0b 1.1.0b.x
openssl / openssl 1.1.0d 1.1.0d.x
openssl / openssl 0.9.8a 0.9.8a.x
openssl / openssl 1.1.0 1.1.0.x
openssl / openssl 1.0.2-beta3 1.0.2-beta3.x
openssl / openssl 0.9.7m 0.9.7m.x
openssl / openssl 1.0.2-beta1 1.0.2-beta1.x
openssl / openssl 1.0.1k 1.0.1k.x
openssl / openssl 1.0.0 1.0.0.x
openssl / openssl 1.0.1b 1.0.1b.x
openssl / openssl 1.1.0a 1.1.0a.x
openssl / openssl 0.9.8zb 0.9.8zb.x
openssl / openssl 0.9.8o 0.9.8o.x
openssl / openssl 0.9.8q 0.9.8q.x
openssl / openssl 0.9.8w 0.9.8w.x
openssl / openssl 1.0.1e 1.0.1e.x
openssl / openssl 1.0.0-beta5 1.0.0-beta5.x
openssl / openssl 1.0.1l 1.0.1l.x
openssl / openssl 0.9.8 0.9.8.x
openssl / openssl 1.0.1f 1.0.1f.x
openssl / openssl 1.0.0l 1.0.0l.x
openssl / openssl 0.9.8v 0.9.8v.x
openssl / openssl 1.0.2 1.0.2.x
openssl / openssl 1.0.0r 1.0.0r.x
openssl / openssl 0.9.8i 0.9.8i.x
openssl / openssl 0.9.8f 0.9.8f.x
openssl / openssl 0.9.8y 0.9.8y.x
openssl / openssl 1.0.0a 1.0.0a.x
openssl / openssl 1.0.0q 1.0.0q.x
openssl / openssl 0.9.8h 0.9.8h.x
openssl / openssl 0.9.8zg 0.9.8zg.x
openssl / openssl 1.0.2f 1.0.2f.x
openssl / openssl 0.9.8x 0.9.8x.x
openssl / openssl 1.0.1i 1.0.1i.x
openssl / openssl 1.0.0b 1.0.0b.x
openssl / openssl 1.0.2-beta2 1.0.2-beta2.x
openssl / openssl 1.0.1 1.0.1.x
openssl / openssl 1.0.2i 1.0.2i.x
openssl / openssl 1.0.0g 1.0.0g.x
openssl / openssl 1.0.2d 1.0.2d.x
openssl / openssl 1.0.2k 1.0.2k.x
openssl / openssl 1.0.2l 1.0.2l.x
debian / debian_linux 8.0 8.0.x
debian / debian_linux 9.0 9.0.x