CVE-2017-1000417

Published
View on NVD ↗
CVSS v3
N/A
CVSS v2
5
MEDIUM
Affected
1
PROJECT

Description

MatrixSSL version 3.7.2 adopts a collision-prone OID comparison logic resulting in possible spoofing of OIDs (e.g. in ExtKeyUsage extension) on X.509 certificates.

matrixssl/matrixssl
matrixssl/matrixsslUNAVAILABLE
Lightweight Embedded SSL/TLS Implementation for IoT Devices
GitHubGitHub