CVE-2017-3730
- Source
- https://nvd.nist.gov/vuln/detail/CVE-2017-3730
- Import Source
- https://storage.googleapis.com/osv-test-cve-osv-conversion/osv-output/CVE-2017-3730.json
- JSON Data
- https://api.test.osv.dev/v1/vulns/CVE-2017-3730
- Downstream
- Published
- 2017-05-04T19:29:00Z
- Modified
- 2025-10-15T08:59:22.652833Z
- Severity
-
- 7.5 (High) CVSS_V3 - CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H CVSS Calculator
- Summary
- [none]
- Details
-
In OpenSSL 1.1.0 before 1.1.0d, if a malicious server supplies bad parameters for a DHE or ECDHE key exchange then this can result in the client attempting to dereference a NULL pointer leading to a client crash. This could be exploited in a Denial of Service attack.
- References
-
- http://www.securityfocus.com/bid/95812
- http://www.securitytracker.com/id/1037717
- https://github.com/openssl/openssl/commit/efbe126e3ebb9123ac9d058aa2bb044261342aaa
- https://security.gentoo.org/glsa/201702-07
- https://support.hpe.com/hpsc/doc/public/display?docLocale=en_US&docId=emr_na-hpesbhf03838en_us
- https://www.exploit-db.com/exploits/41192/
- https://www.openssl.org/news/secadv/20170126.txt
- http://www.oracle.com/technetwork/security-advisory/cpujan2018-3236628.html
- http://www.oracle.com/technetwork/security-advisory/cpuoct2017-3236626.html
- https://www.oracle.com/technetwork/security-advisory/cpuapr2019-5072813.html
Affected packages
Git / github.com/openssl/openssl
Affected ranges
- Type
- GIT
- Repo
- https://github.com/openssl/openssl
- Events
-
Introduced0 Unknown introduced commit / All previous commits are affectedFixed
Affected versions
Other
BEFORE_engine
OpenSSL_0_9_1c
OpenSSL_0_9_2b
OpenSSL_0_9_3
OpenSSL_0_9_3a
OpenSSL_0_9_3beta2
OpenSSL_0_9_4
OpenSSL_0_9_5a
OpenSSL_0_9_5a-beta1
OpenSSL_0_9_5a-beta2
OpenSSL_0_9_5beta1
OpenSSL_0_9_5beta2
OpenSSL_0_9_6-beta3
OpenSSL_1_1_0
OpenSSL_1_1_0-pre1
OpenSSL_1_1_0-pre2
OpenSSL_1_1_0-pre3
OpenSSL_1_1_0-pre4
OpenSSL_1_1_0-pre5
OpenSSL_1_1_0-pre6
OpenSSL_1_1_0a
OpenSSL_1_1_0b
OpenSSL_1_1_0c
master-post-auto-reformat
master-post-reformat
master-pre-auto-reformat
master-pre-reformat
Database specific
vanir_signatures
[
{
"signature_version": "v1",
"signature_type": "Function",
"source": "https://github.com/openssl/openssl/commit/efbe126e3ebb9123ac9d058aa2bb044261342aaa",
"id": "CVE-2017-3730-1aad85c3",
"target": {
"function": "tls_construct_cke_ecdhe",
"file": "ssl/statem/statem_clnt.c"
},
"deprecated": false,
"digest": {
"function_hash": "257890200851280660739288133489084953939",
"length": 942.0
}
},
{
"signature_version": "v1",
"signature_type": "Line",
"source": "https://github.com/openssl/openssl/commit/efbe126e3ebb9123ac9d058aa2bb044261342aaa",
"id": "CVE-2017-3730-68fc7cf3",
"target": {
"file": "ssl/statem/statem_clnt.c"
},
"deprecated": false,
"digest": {
"threshold": 0.9,
"line_hashes": [
"11913848747542421415906338359746620769",
"287977064637751600933892521007570061603",
"75632844330391608306880641979290274794",
"72672834426414620024176760786350314603",
"22420263237889046951604396148376714523",
"74913937599607707084124611264251187820",
"17205899439547006571301104330155329558",
"247200306413930743667171147817033167050"
]
}
},
{
"signature_version": "v1",
"signature_type": "Function",
"source": "https://github.com/openssl/openssl/commit/efbe126e3ebb9123ac9d058aa2bb044261342aaa",
"id": "CVE-2017-3730-d4f05f43",
"target": {
"function": "tls_construct_cke_dhe",
"file": "ssl/statem/statem_clnt.c"
},
"deprecated": false,
"digest": {
"function_hash": "130998826456393305051557197549969402375",
"length": 838.0
}
}
]