Miggo Logo

CVE-2017-11770:
Improper Certificate Validation

7.5

CVSS Score
3.0

Basic Information

EPSS Score
0.93719%
Published
4/12/2022
Updated
1/11/2023
KEV Status
No
Technology
TechnologyC#

Technical Details

CVSS Vector
CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
Package NameEcosystemVulnerable VersionsFirst Patched Version
System.Security.Cryptography.X509Certificatesnuget>= 4.0.0, < 4.1.24.1.2
Microsoft.NETCore.Appnuget>= 1.0.0, < 2.0.32.0.3

Vulnerability Intelligence
Miggo AIMiggo AI

Miggo AIRoot Cause Analysis

The vulnerability centers on improper certificate chain validation leading to DoS. The X509Chain.Build() method is the primary entry point for certificate chain validation in .NET's cryptography stack. The advisory explicitly mentions infinite X509Chain recursion as the attack vector, which would manifest in this chain-building function. While no direct patch code is shown, the vulnerability description and affected component (X509Certificates package) strongly implicate this critical security boundary function as the vulnerable entry point.

Vulnerable functions

Only Mi**o us*rs **n s** t*is s**tion

WAF Protection Rules

WAF Rule

.N*T *or* *.*, *.*, *n* *.* *llow *n un*ut**nti**t** *tt**k*r to r*mot*ly **us* * **ni*l o* s*rvi** *tt**k ***inst * .N*T *or* w** *ppli**tion *y improp*rly p*rsin* **rti*i**t* **t*. * **ni*l o* s*rvi** vuln*r**ility *xists w**n .N*T *or* improp*rly

Reasoning

T** vuln*r**ility **nt*rs on improp*r **rti*i**t* ***in v*li**tion l***in* to *oS. T** `X******in.*uil*()` m*t*o* is t** prim*ry *ntry point *or **rti*i**t* ***in v*li**tion in .N*T's *rypto*r*p*y st**k. T** **visory *xpli*itly m*ntions in*init* `X**