In phpseclib before 1.0.22, 2.x before 2.0.46, and 3.x before 3.0.33, some characters in Subject Alternative Name fields in TLS certificates are incorrectly allowed to have a special meaning in regular expressions (such as a + wildcard), leading to name confusion in X.509 certificate host verification.
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:NPhpseclib
APPPhpseclib1.0.0 – 1.0.22 (bez)2.0.0 – 2.0.46 (bez)3.0.0 – 3.0.33 (bez)
Related vulnerabilities
phpseclib is a PHP secure communications library. Projects using versions 0.1.1 through 1.0.26, 2.0.0 through ...
An issue was discovered in phpseclib 1.x before 1.0.23, 2.x before 2.0.47, and 3.x before 3.0.36. An attacker ...
An issue was discovered in phpseclib 1.x before 1.0.23, 2.x before 2.0.47, and 3.x before 3.0.36. When process...
In Math/BinaryField.php in phpseclib 3 before 3.0.34, excessively large degrees can lead to a denial of servic...
Math/PrimeField.php in phpseclib 3.x before 3.0.19 has an infinite loop with composite primefields.