Intrusion Prevention

OpenSSL.SSL_check_chain.NULL.Pointer.Dereference

Description

This indicates an attack attempt to exploit a Memory Access Error Vulnerability in OpenSSL Project OpenSSL.
This vulnerability is due to incorrect handling of the "signature_algorithms_cert" TLS extension by SSL_check_chain(). Successful exploitation will cause the service to abnormally terminate, leading to a denial-of-service condition.

Affected Products

OpenSSL Project OpenSSL 1.1.1d
OpenSSL Project OpenSSL 1.1.1e
OpenSSL Project OpenSSL 1.1.1f

Impact

Denial of Service: Remote attackers can crash vulnerable systems.

Recommended Actions

Apply the most recent upgrade or patch from the vendor.
https://www.openssl.org/news/secadv/20200421.txt

Coverage

IPS (Regular DB)
IPS (Extended DB)

Version Updates

Date	Version	Status	Detail
2020-05-14	15.845	Modified	Default_action:pass:drop
2020-05-06	15.838	New
2020-05-06	15.837	Removed
2020-05-06	15.836	New

ID	48954
Created	May 06, 2020
Updated	Sep 08, 2021
CVE ID
Risk
Exploit Prediction Score	67.31%
Default Action	drop
Active
Affected OS	Windows, Linux, BSD, Solaris, MacOS
Affected App	Other
Profile Type	Buffer Errors

Protect

Detect

Respond

Recover

Identify

Network Security

Cloud & Application Security

Endpoint Security

Security Operations

Intrusion Prevention

OpenSSL.SSL_check_chain.NULL.Pointer.Dereference

Description

Affected Products

Impact

Recommended Actions

Coverage

Version Updates

Research Center

Services

Protect

Detect

Respond

Recover

Identify

Network Security

Cloud & Application Security

Endpoint Security

Security Operations

Threat Intelligence Center

Support Center

Resource Center

About

Intrusion Prevention

OpenSSL.SSL_check_chain.NULL.Pointer.Dereference

Description

Affected Products

Impact

Recommended Actions

Coverage

Version Updates

Threat Intelligence
Center