{"containers": {"cna": {"affected": [{"product": "n/a", "vendor": "n/a", "versions": [{"status": "affected", "version": "n/a"}]}], "datePublic": "2013-03-20T00:00:00", "descriptions": [{"lang": "en", "value": "x3270 before 3.3.12ga12 does not verify that the server hostname matches a domain name in the subject's Common Name (CN) or subjectAltName field of the X.509 certificate, which allows man-in-the-middle attackers to spoof SSL servers via an arbitrary valid certificate."}], "problemTypes": [{"descriptions": [{"description": "n/a", "lang": "en", "type": "text"}]}], "providerMetadata": {"dateUpdated": "2017-08-28T12:57:01", "orgId": "53f830b8-0a3f-465b-8143-3b8a9948e749", "shortName": "redhat"}, "references": [{"name": "52650", "tags": ["third-party-advisory", "x_refsource_SECUNIA"], "url": "http://secunia.com/advisories/52650"}, {"tags": ["x_refsource_CONFIRM"], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=889373"}, {"name": "91572", "tags": ["vdb-entry", "x_refsource_OSVDB"], "url": "http://osvdb.org/91572"}, {"tags": ["x_refsource_CONFIRM"], "url": "http://sourceforge.net/projects/x3270/files/x3270/3.3.12ga12/"}, {"name": "x3270-cve20125662-spoofing(82984)", "tags": ["vdb-entry", "x_refsource_XF"], "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/82984"}]}, "adp": [{"providerMetadata": {"orgId": "af854a3a-2127-422b-91ae-364da2661108", "shortName": "CVE", "dateUpdated": "2024-08-06T21:14:16.429Z"}, "title": "CVE Program Container", "references": [{"name": "52650", "tags": ["third-party-advisory", "x_refsource_SECUNIA", "x_transferred"], "url": "http://secunia.com/advisories/52650"}, {"tags": ["x_refsource_CONFIRM", "x_transferred"], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=889373"}, {"name": "91572", "tags": ["vdb-entry", "x_refsource_OSVDB", "x_transferred"], "url": "http://osvdb.org/91572"}, {"tags": ["x_refsource_CONFIRM", "x_transferred"], "url": "http://sourceforge.net/projects/x3270/files/x3270/3.3.12ga12/"}, {"name": "x3270-cve20125662-spoofing(82984)", "tags": ["vdb-entry", "x_refsource_XF", "x_transferred"], "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/82984"}]}]}, "cveMetadata": {"assignerOrgId": "53f830b8-0a3f-465b-8143-3b8a9948e749", "assignerShortName": "redhat", "cveId": "CVE-2012-5662", "datePublished": "2014-05-27T15:00:00", "dateReserved": "2012-10-24T00:00:00", "dateUpdated": "2024-08-06T21:14:16.429Z", "state": "PUBLISHED"}, "dataType": "CVE_RECORD", "dataVersion": "5.1"}

{}

{"configurations": [{"nodes": [{"cpeMatch": [{"criteria": "cpe:2.3:a:paul_mattes:x3270:*:ga11:*:*:*:*:*:*", "matchCriteriaId": "CECF32AA-A561-4FD2-B330-06DE255FC042", "versionEndIncluding": "3.3.12", "vulnerable": true}, {"criteria": "cpe:2.3:a:paul_mattes:x3270:3.3.5:*:*:*:*:*:*:*", "matchCriteriaId": "129A74C4-D82E-4CD2-B42B-BB4DFE7C8150", "vulnerable": true}, {"criteria": "cpe:2.3:a:paul_mattes:x3270:3.3.6:*:*:*:*:*:*:*", "matchCriteriaId": "62BCE393-034C-47FC-B2D1-EBAFB77EAF17", "vulnerable": true}, {"criteria": "cpe:2.3:a:paul_mattes:x3270:3.3.7:*:*:*:*:*:*:*", "matchCriteriaId": "C356C9D2-083E-40A6-BBFE-0E54B31941C8", "vulnerable": true}, {"criteria": "cpe:2.3:a:paul_mattes:x3270:3.3.8:-:*:*:*:*:*:*", "matchCriteriaId": "A9DF7203-4FFC-4591-A32C-8BB171A2D34A", "vulnerable": true}, {"criteria": "cpe:2.3:a:paul_mattes:x3270:3.3.8:p1:*:*:*:*:*:*", "matchCriteriaId": "21146FE7-7733-4D88-BB41-67D456E7C3C1", "vulnerable": true}, {"criteria": "cpe:2.3:a:paul_mattes:x3270:3.3.8:p2:*:*:*:*:*:*", "matchCriteriaId": "D1D7A2CB-BC92-4F87-962F-D8BAD4B770F3", "vulnerable": true}, {"criteria": "cpe:2.3:a:paul_mattes:x3270:3.3.8:p3:*:*:*:*:*:*", "matchCriteriaId": "E99FD662-CFD4-43BD-920B-1D225E14B547", "vulnerable": true}, {"criteria": "cpe:2.3:a:paul_mattes:x3270:3.3.9:ga11:*:*:*:*:*:*", "matchCriteriaId": "CC2484FD-80F6-4830-9614-B0B74DB3BD41", "vulnerable": true}, {"criteria": "cpe:2.3:a:paul_mattes:x3270:3.3.9:ga12:*:*:*:*:*:*", "matchCriteriaId": "F892FF89-38E7-434D-B125-C4AED094A193", "vulnerable": true}, {"criteria": "cpe:2.3:a:paul_mattes:x3270:3.3.10:ga3:*:*:*:*:*:*", "matchCriteriaId": "5D8E2E82-66C2-465D-BD5D-33B20BE4161D", "vulnerable": true}, {"criteria": "cpe:2.3:a:paul_mattes:x3270:3.3.10:ga4:*:*:*:*:*:*", "matchCriteriaId": "45B5950B-6325-4E7A-AD71-215A30BA0549", "vulnerable": true}, {"criteria": "cpe:2.3:a:paul_mattes:x3270:3.3.10:ga5:*:*:*:*:*:*", "matchCriteriaId": "4E74D267-5CCA-4D54-81C3-A44EC25F8167", "vulnerable": true}, {"criteria": "cpe:2.3:a:paul_mattes:x3270:3.3.11:beta2:*:*:*:*:*:*", "matchCriteriaId": "5C8B630D-FF21-4089-B962-A167C2A33C2D", "vulnerable": true}, {"criteria": "cpe:2.3:a:paul_mattes:x3270:3.3.11:beta4:*:*:*:*:*:*", "matchCriteriaId": "EAD52ED7-5B55-46BD-AA01-5DCC6EE801B1", "vulnerable": true}, {"criteria": "cpe:2.3:a:paul_mattes:x3270:3.3.11:ga6:*:*:*:*:*:*", "matchCriteriaId": "BFBE9765-B2FE-412B-ABE1-0F0AABCA24B8", "vulnerable": true}, {"criteria": "cpe:2.3:a:paul_mattes:x3270:3.3.12:beta6:*:*:*:*:*:*", "matchCriteriaId": "6C0A6C8D-7635-4F43-A511-FBA80FA9A4C1", "vulnerable": true}, {"criteria": "cpe:2.3:a:paul_mattes:x3270:3.3.12:ga10:*:*:*:*:*:*", "matchCriteriaId": "63DB41F3-EBDA-40E0-84DA-3457E44565FE", "vulnerable": true}, {"criteria": "cpe:2.3:a:paul_mattes:x3270:3.3.12:ga7:*:*:*:*:*:*", "matchCriteriaId": "5C96AE7A-A1FF-4956-BAF2-E97E6C7B36DE", "vulnerable": true}], "negate": false, "operator": "OR"}]}], "cveTags": [], "descriptions": [{"lang": "en", "value": "x3270 before 3.3.12ga12 does not verify that the server hostname matches a domain name in the subject's Common Name (CN) or subjectAltName field of the X.509 certificate, which allows man-in-the-middle attackers to spoof SSL servers via an arbitrary valid certificate."}, {"lang": "es", "value": "x3270 anterior a 3.3.12ga12 no verifica que el nombre de servidor coincide con un nombre de dominio en el campo de nombre com\u00fan del sujeto (CN) o el campo subjectAltName del certificado X.509, lo que permite a atacantes man-in-the-middle falsificar servidores SSL a trav\u00e9s de un certificado v\u00e1lido arbitrario."}], "id": "CVE-2012-5662", "lastModified": "2025-04-12T10:46:40.837", "metrics": {"cvssMetricV2": [{"acInsufInfo": false, "baseSeverity": "MEDIUM", "cvssData": {"accessComplexity": "MEDIUM", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "NONE", "baseScore": 5.8, "confidentialityImpact": "PARTIAL", "integrityImpact": "PARTIAL", "vectorString": "AV:N/AC:M/Au:N/C:P/I:P/A:N", "version": "2.0"}, "exploitabilityScore": 8.6, "impactScore": 4.9, "obtainAllPrivilege": false, "obtainOtherPrivilege": false, "obtainUserPrivilege": false, "source": "nvd@nist.gov", "type": "Primary", "userInteractionRequired": false}]}, "published": "2014-05-27T14:55:02.993", "references": [{"source": "secalert@redhat.com", "url": "http://osvdb.org/91572"}, {"source": "secalert@redhat.com", "url": "http://secunia.com/advisories/52650"}, {"source": "secalert@redhat.com", "url": "http://sourceforge.net/projects/x3270/files/x3270/3.3.12ga12/"}, {"source": "secalert@redhat.com", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=889373"}, {"source": "secalert@redhat.com", "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/82984"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "url": "http://osvdb.org/91572"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "url": "http://secunia.com/advisories/52650"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "url": "http://sourceforge.net/projects/x3270/files/x3270/3.3.12ga12/"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=889373"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/82984"}], "sourceIdentifier": "secalert@redhat.com", "vulnStatus": "Deferred", "weaknesses": [{"description": [{"lang": "en", "value": "CWE-310"}], "source": "nvd@nist.gov", "type": "Primary"}]}

{"bugzilla": {"description": "x3270: does not properly validate SSL certificates", "id": "889373", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=889373"}, "csaw": false, "cvss": {"cvss_base_score": "5.8", "cvss_scoring_vector": "AV:N/AC:M/Au:N/C:P/I:P/A:N", "status": "draft"}, "details": ["x3270 before 3.3.12ga12 does not verify that the server hostname matches a domain name in the subject's Common Name (CN) or subjectAltName field of the X.509 certificate, which allows man-in-the-middle attackers to spoof SSL servers via an arbitrary valid certificate."], "name": "CVE-2012-5662", "package_state": [{"cpe": "cpe:/o:redhat:enterprise_linux:5", "fix_state": "Not affected", "package_name": "x3270", "product_name": "Red Hat Enterprise Linux 5"}, {"cpe": "cpe:/o:redhat:enterprise_linux:6", "fix_state": "Not affected", "package_name": "x3270", "product_name": "Red Hat Enterprise Linux 6"}, {"cpe": "cpe:/o:redhat:enterprise_linux:7", "fix_state": "Affected", "package_name": "x3270", "product_name": "Red Hat Enterprise Linux 7"}], "public_date": "2013-03-20T00:00:00Z", "references": ["https://www.cve.org/CVERecord?id=CVE-2012-5662\nhttps://nvd.nist.gov/vuln/detail/CVE-2012-5662"], "statement": "Not vulnerable. This issue did not affect the versions of x3270 as shipped with Red Hat Enterprise Linux 5 and 6 as they did not include support for SSL certificate verification.", "threat_severity": "Moderate"}