PT-2021-13852 · Stunnel+9 · Stunnel+9

Riccardo Schirone

Published

2020-10-11

Updated

2025-08-13

CVE-2021-20230

CVSS v2.0

7.8

High

Vector

AV:N/AC:L/Au:N/C:C/I:N/A:N

Name of the Vulnerable Software and Affected Versions: stunnel versions prior to 5.57

Description: A flaw was found in stunnel where it improperly validates client certificates when it is configured to use both redirect and verifyChain options. This flaw allows an attacker with a certificate signed by a Certificate Authority, which is not the one accepted by the stunnel server, to access the tunneled service instead of being redirected to the address specified in the redirect option. The highest threat from this vulnerability is to confidentiality.

Recommendations: For versions prior to 5.57, update to version 5.57 or later to resolve the issue. As a temporary workaround, consider disabling the use of both redirect and verifyChain options together until a patch is available. Restrict access to the tunneled service to minimize the risk of exploitation. Avoid using the redirect option with verifyChain until the issue is resolved.

Fix

Improper Certificate Validation

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-295

Related Identifiers

ALSA-2021:0618

ALT-PU-2021-3237

ALT-PU-2023-2032

ALT-PU-2023-2033

ALT-PU-2023-5129

AZL-7375

BDU:2025-09865

CESA-2021_0618

CVE-2021-20230

MGASA-2021-0284

OPENSUSE-SU-2021:0409-1

OPENSUSE-SU-2021_0409-1

RHSA-2021:0618

RHSA-2021:0619

RHSA-2021:0620

RHSA-2021_0618

RLSA-2021:0618

SUSE-SU-2021:0772-1

SUSE-SU-2021:1465-1

SUSE-SU-2021_0772-1

SUSE-SU-2021_1465-1

USN-6901-1

Affected Products

Alt Linux

Almalinux

Centos

Linuxmint

Red Hat

Red Os

Rocky Linux

Suse

Ubuntu

Stunnel

PT-2021-13852 · Stunnel+9 · Stunnel+9

CVE-2021-20230

Weakness Enumeration

Related Identifiers

Affected Products

References · 41