CVE-2025-27820

A bug in PSL validation logic in Apache HttpClient 5.4.x disables domain checks, affecting cookie management and host name verification. Discovered by the Apache HttpClient team. Fixed in the 5.4.3 release

CVSS v3 7.5 HIGH

7.5^/10

CVSS v3 : HIGH

Vector :

Exploitability : 3.9 / Impact : 3.6

Attack Vector NETWORK

Attack Complexity LOW

Privileges Required NONE

User Interaction NONE

Confidentiality Impact NONE

Integrity Impact HIGH

Availability Impact NONE

Scope UNCHANGED

References

Link	Resource
https://github.com/apache/httpcomponents-client/pull/574	Issue Tracking Patch
https://github.com/apache/httpcomponents-client/pull/621	Issue Tracking Patch
https://hc.apache.org/httpcomponents-client-5.4.x/index.html	Product
https://lists.apache.org/thread/55xhs40ncqv97qvoocok44995xp5kqn8	Mailing List Patch
https://security.netapp.com/advisory/ntap-20250516-0003/	Third Party Advisory

Configurations

Configuration 1 (hide)

cpe:2.3:a:apache:httpclient:*:*:*:*:*:*:*:*

Configuration 2 (hide)

cpe:2.3:a:netapp:ontap_tools:10:*:*:*:*:vmware_vsphere:*:*

History

No history.

Information

Published : 2025-04-24 12:15

Updated : 2025-07-16 14:48

NVD link : CVE-2025-27820

Mitre link : CVE-2025-27820

CVE.ORG link : CVE-2025-27820

JSON object : View

Products Affected

netapp

ontap_tools

apache

httpclient

CWE

CWE-295

Improper Certificate Validation

{"id": "CVE-2025-27820", "cveTags": [], "metrics": {"cvssMetricV31": [{"type": "Secondary", "source": "134c704f-9b21-4f2e-91b3-4a467353bcc0", "cvssData": {"scope": "UNCHANGED", "version": "3.1", "baseScore": 7.5, "attackVector": "NETWORK", "baseSeverity": "HIGH", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N", "integrityImpact": "HIGH", "userInteraction": "NONE", "attackComplexity": "LOW", "availabilityImpact": "NONE", "privilegesRequired": "NONE", "confidentialityImpact": "NONE"}, "impactScore": 3.6, "exploitabilityScore": 3.9}]}, "published": "2025-04-24T12:15:16.723", "references": [{"url": "https://github.com/apache/httpcomponents-client/pull/574", "tags": ["Issue Tracking", "Patch"], "source": "[email protected]"}, {"url": "https://github.com/apache/httpcomponents-client/pull/621", "tags": ["Issue Tracking", "Patch"], "source": "[email protected]"}, {"url": "https://hc.apache.org/httpcomponents-client-5.4.x/index.html", "tags": ["Product"], "source": "[email protected]"}, {"url": "https://lists.apache.org/thread/55xhs40ncqv97qvoocok44995xp5kqn8", "tags": ["Mailing List", "Patch"], "source": "[email protected]"}, {"url": "https://security.netapp.com/advisory/ntap-20250516-0003/", "tags": ["Third Party Advisory"], "source": "af854a3a-2127-422b-91ae-364da2661108"}], "vulnStatus": "Analyzed", "weaknesses": [{"type": "Secondary", "source": "134c704f-9b21-4f2e-91b3-4a467353bcc0", "description": [{"lang": "en", "value": "CWE-295"}]}], "descriptions": [{"lang": "en", "value": "A bug in PSL validation logic in Apache HttpClient 5.4.x disables domain checks, affecting cookie management and host name verification. Discovered by the Apache HttpClient team. Fixed in the 5.4.3 release"}, {"lang": "es", "value": "Un error en la l\u00f3gica de validaci\u00f3n de PSL en Apache HttpClient 5.4.x deshabilita las comprobaciones de dominio, lo que afecta la gesti\u00f3n de cookies y la verificaci\u00f3n del nombre de host. Descubierto por el equipo de Apache HttpClient. Corregido en la versi\u00f3n 5.4.3."}], "lastModified": "2025-07-16T14:48:52.213", "configurations": [{"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:a:apache:httpclient:*:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "55D2BA23-1729-451A-8F2D-77BF6288AE22", "versionEndExcluding": "5.4.3", "versionStartIncluding": "5.4"}], "operator": "OR"}]}, {"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:a:netapp:ontap_tools:10:*:*:*:*:vmware_vsphere:*:*", "vulnerable": true, "matchCriteriaId": "5333B745-F7A3-46CB-8437-8668DB08CD6F"}], "operator": "OR"}]}], "sourceIdentifier": "[email protected]"}