high
7.3
CWE
392 1395
Advisory Published
CVE Published
Advisory Published
Updated

CVE-2024-12797: RFC7250 handshakes with unauthenticated servers don't abort as expected

First published: Wed Jan 29 2025(Updated: )

Issue summary: Clients using RFC7250 Raw Public Keys (RPKs) to authenticate a server may fail to notice that the server was not authenticated, because handshakes don't abort as expected when the SSL_VERIFY_PEER verification mode is set. Impact summary: TLS and DTLS connections using raw public keys may be vulnerable to man-in-middle attacks when server authentication failure is not detected by clients. RPKs are disabled by default in both TLS clients and TLS servers. The issue only arises when TLS clients explicitly enable RPK use by the server, and the server, likewise, enables sending of an RPK instead of an X.509 certificate chain. The affected clients are those that then rely on the handshake to fail when the server's RPK fails to match one of the expected public keys, by setting the verification mode to SSL_VERIFY_PEER. Clients that enable server-side raw public keys can still find out that raw public key verification failed by calling SSL_get_verify_result(), and those that do, and take appropriate action, are not affected. This issue was introduced in the initial implementation of RPK support in OpenSSL 3.2. The FIPS modules in 3.4, 3.3, 3.2, 3.1 and 3.0 are not affected by this issue.

Credit: openssl-security@openssl.org

Affected SoftwareAffected VersionHow to fix
OpenSSL libcrypto>=3.2<3.4
pip/cryptography>=42.0.0<44.0.1
44.0.1
debian/openssl<=3.4.0-2
1.1.1w-0+deb11u1
1.1.1w-0+deb11u2
3.0.15-1~deb12u1
3.0.14-1~deb12u2
3.4.1-1

Never miss a vulnerability like this again

Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.

Read MoreStart Free Trial

Reference Links

Frequently Asked Questions

  • What is the severity of CVE-2024-12797?

    CVE-2024-12797 is considered a high severity vulnerability due to the potential for unauthenticated server connections.

  • How do I fix CVE-2024-12797?

    To mitigate CVE-2024-12797, ensure that the SSL_VERIFY_PEER verification mode is set correctly during TLS handshakes.

  • What impact does CVE-2024-12797 have on OpenSSL versions?

    CVE-2024-12797 affects OpenSSL versions from 3.2 up to, but not including, 3.4.

  • What type of authentication is affected by CVE-2024-12797?

    CVE-2024-12797 impacts clients using RFC7250 Raw Public Keys for server authentication.

  • When was CVE-2024-12797 disclosed?

    CVE-2024-12797 was disclosed on February 11, 2025.

Company

Resources

Contact

SecAlerts Pty Ltd.
132 Wickham Terrace
Fortitude Valley,
QLD 4006, Australia
info@secalerts.co
By using SecAlerts services, you agree to our services end-user license agreement. This website is safeguarded by reCAPTCHA and governed by the Google Privacy Policy and Terms of Service. All names, logos, and brands of products are owned by their respective owners, and any usage of these names, logos, and brands for identification purposes only does not imply endorsement. If you possess any content that requires removal, please get in touch with us.
© 2025 SecAlerts Pty Ltd.
ABN: 70 645 966 203, ACN: 645 966 203