Logo
-

Byte Open Security

(ByteOS Network)

Log In

Sign Up

ByteOS

Security
Vulnerability Details
Registries
Custom Views
Weaknesses
Attack Patterns
Filters & Tools
Vulnerability Details :

CVE-2026-53712

Summary
Assigner-GitHub_M
Assigner Org ID-a0819718-46f1-4df5-94e2-005712e83aaa
Published At-17 Jul, 2026 | 18:19
Updated At-17 Jul, 2026 | 18:19
Rejected At-
Credits

SCRAM: Silent channel-binding authentication downgrade via unsupported certificate algorithms

SCRAM (Salted Challenge Response Authentication Mechanism) is part of the family of Simple Authentication and Security Layer (SASL, RFC 4422) authentication mechanisms. Prior to 3.3, a flaw in com.ongres.scram:scram-client and com.ongres.scram:scram-common allows an attacker capable of a TLS man-in-the-middle attack to silently downgrade a connection from SCRAM-SHA-256-PLUS with channel binding to standard SCRAM-SHA-256 without channel binding when TlsServerEndpoint processes an X.509 certificate using a modern signature algorithm such as Ed25519; getChannelBindingData() can return an empty byte array after NoSuchAlgorithmException, and the ScramClient builder treats that as absent channel-binding data. This issue is fixed in version 3.3.

Vendors
-
Not available
Products
-
Metrics (CVSS)
VersionBase scoreBase severityVector
Weaknesses
Attack Patterns
Solution/Workaround
References
HyperlinkResource Type
EPSS History
Score
Latest Score
-
N/A
No data available for selected date range
Percentile
Latest Percentile
-
N/A
No data available for selected date range
Stakeholder-Specific Vulnerability Categorization (SSVC)
▼Common Vulnerabilities and Exposures (CVE)
cve.org
Assigner:GitHub_M
Assigner Org ID:a0819718-46f1-4df5-94e2-005712e83aaa
Published At:17 Jul, 2026 | 18:19
Updated At:17 Jul, 2026 | 18:19
Rejected At:
▼CVE Numbering Authority (CNA)
SCRAM: Silent channel-binding authentication downgrade via unsupported certificate algorithms

SCRAM (Salted Challenge Response Authentication Mechanism) is part of the family of Simple Authentication and Security Layer (SASL, RFC 4422) authentication mechanisms. Prior to 3.3, a flaw in com.ongres.scram:scram-client and com.ongres.scram:scram-common allows an attacker capable of a TLS man-in-the-middle attack to silently downgrade a connection from SCRAM-SHA-256-PLUS with channel binding to standard SCRAM-SHA-256 without channel binding when TlsServerEndpoint processes an X.509 certificate using a modern signature algorithm such as Ed25519; getChannelBindingData() can return an empty byte array after NoSuchAlgorithmException, and the ScramClient builder treats that as absent channel-binding data. This issue is fixed in version 3.3.

Affected Products
Vendor
ongres
Product
scram
Versions
Affected
  • < 3.3
Problem Types
TypeCWE IDDescription
CWECWE-636CWE-636: Not Failing Securely ('Failing Open')
CWECWE-757CWE-757: Selection of Less-Secure Algorithm During Negotiation ('Algorithm Downgrade')
Type: CWE
CWE ID: CWE-636
Description: CWE-636: Not Failing Securely ('Failing Open')
Type: CWE
CWE ID: CWE-757
Description: CWE-757: Selection of Less-Secure Algorithm During Negotiation ('Algorithm Downgrade')
Metrics
VersionBase scoreBase severityVector
4.08.2HIGH
CVSS:4.0/AV:N/AC:H/AT:N/PR:N/UI:N/VC:N/VI:H/VA:N/SC:N/SI:L/SA:N
Version: 4.0
Base score: 8.2
Base severity: HIGH
Vector:
CVSS:4.0/AV:N/AC:H/AT:N/PR:N/UI:N/VC:N/VI:H/VA:N/SC:N/SI:L/SA:N
Metrics Other Info
Impacts
CAPEC IDDescription
Solutions

Configurations

Workarounds

Exploits

Credits

Timeline
EventDate
Replaced By

Rejected Reason

References
HyperlinkResource
https://github.com/ongres/scram/security/advisories/GHSA-p9jg-fcr6-3mhf
x_refsource_CONFIRM
https://github.com/ongres/scram/releases/tag/3.3
x_refsource_MISC
Hyperlink: https://github.com/ongres/scram/security/advisories/GHSA-p9jg-fcr6-3mhf
Resource:
x_refsource_CONFIRM
Hyperlink: https://github.com/ongres/scram/releases/tag/3.3
Resource:
x_refsource_MISC
Information is not available yet

Similar CVEs

0Records found

Details not found