CVE-2020-13777

moderate-risk

Published 2020-06-04

GnuTLS 3.6.x before 3.6.14 uses incorrect cryptography for encrypting a session ticket (a loss of confidentiality in TLS 1.2, and an authentication bypass in TLS 1.3). The earliest affected version is 3.6.4 (2018-09-24) because of an error in a 2018-09-18 commit. Until the first key rotation, the TLS server always uses wrong data in place of an encryption key derived from an application.

Do I need to act?

1.5% chance of exploitation in next 30 days

EPSS score — moderate exploit probability

Not on CISA KEV list

No confirmed active exploitation reported to CISA

Patch status unknown

Check vendor advisories for fix availability and mitigation guidance

CVSS 7.4/10 High

NETWORK / HIGH complexity

Affected Products (6)

Gnutls

Fedora

Ubuntu Linux

Debian Linux

Affected Vendors

Debian Gnu Canonical Fedoraproject

References (20)

Broken Link http://lists.opensuse.org/opensuse-security-announce/2020-06/msg00015.html

Vendor Advisory https://gnutls.org/security-new.html#GNUTLS-SA-2020-06-03

https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedorapro...

Third Party Advisory https://security.gentoo.org/glsa/202006-01

Third Party Advisory https://security.netapp.com/advisory/ntap-20200619-0004/

Third Party Advisory https://usn.ubuntu.com/4384-1/

Third Party Advisory https://www.debian.org/security/2020/dsa-4697

Broken Link http://lists.opensuse.org/opensuse-security-announce/2020-06/msg00015.html

Vendor Advisory https://gnutls.org/security-new.html#GNUTLS-SA-2020-06-03

https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedorapro...

Third Party Advisory https://security.gentoo.org/glsa/202006-01

Third Party Advisory https://security.netapp.com/advisory/ntap-20200619-0004/

Third Party Advisory https://usn.ubuntu.com/4384-1/

Third Party Advisory https://www.debian.org/security/2020/dsa-4697

/ 100

moderate-risk

Severity 22/34 · High

Exploitability 4/34 · Minimal

Exposure 13/34 · Low