Lucene search

K
cvelistMitreCVELIST:CVE-2021-34558
HistoryJul 15, 2021 - 1:47 p.m.

CVE-2021-34558

2021-07-1513:47:36
mitre
www.cve.org
1

7.2 High

AI Score

Confidence

High

0.003 Low

EPSS

Percentile

66.2%

The crypto/tls package of Go through 1.16.5 does not properly assert that the type of public key in an X.509 certificate matches the expected type when doing a RSA based key exchange, allowing a malicious TLS server to cause a TLS client to panic.

References