Vulnerability of OpenSSL library EVP_PKEY_public_check() function is related to uncontrolled resource consumption.
resources. Exploitation of the vulnerability could allow an attacker acting remotely to cause a denial of service (DoS).
denial of service (DoS)

OSVersionArchitecturePackageVersionFilename
redos7.3x86_64openssl3<= 3.2.1-2UNKNOWN

OS	Version	Architecture	Package	Version	Filename
redos	7.3	x86_64	openssl3	<= 3.2.1-2	UNKNOWN

debiancve 1

cbl_mariner 3

nvd 1

openvas 12

veracode 1

osv 3

openssl 1

redhatcve 1

alpinelinux 1

cgr 1

cvelist 1

ubuntucve 1

f5 1

wolfi 1

cve 1

nessus 11

freebsd 1

ibm 12

mageia 2

aix 1

cloudfoundry 1

ubuntu 1

redhat 8

almalinux 1

oraclelinux 1

hp 1

debiancve

CVE-2023-6237

2024-04-25 07:15:45

cbl_mariner

CVE-2023-6237 affecting package openssl for versions less than 3.3.0-1

2024-05-17 21:38:35

CVE-2023-6237 affecting package nodejs for versions less than 20.14.0-1

2024-06-21 09:32:44

CVE-2023-6237 affecting package nodejs18 for versions less than 18.20.2-1

2024-05-06 17:48:02

nvd

CVE-2023-6237

2024-04-25 07:15:45

openvas

OpenSSL DoS Vulnerability (20240115) - Linux

2024-01-15 00:00:00

OpenSSL DoS Vulnerability (20240115) - Windows

2024-01-15 00:00:00

openSUSE: Security Advisory for openssl (SUSE-SU-2024:0172-1)

2024-03-04 00:00:00

veracode

Denial Of Service (DOS)

2024-01-30 19:46:06

osv

CVE-2023-6237

2024-04-25 07:15:45

openssl vulnerabilities

2024-02-05 12:18:56

Low: openssl and openssl-fips-provider security update

2024-04-30 00:00:00

openssl

Vulnerability in OpenSSL CVE-2023-6237

2024-01-15 00:00:00

redhatcve

CVE-2023-6237

2024-01-15 18:31:13

alpinelinux

CVE-2023-6237

2024-04-25 07:15:45

cgr

CVE-2023-6237 vulnerabilities

2024-05-19 03:07:16

cvelist

CVE-2023-6237 Excessive time spent checking invalid RSA public keys

2024-04-25 06:27:26

ubuntucve

CVE-2023-6237

2024-01-15 00:00:00

K000138668 : OpenSSL vulnerability CVE-2023-6237

2024-02-21 00:00:00

wolfi

CVE-2023-6237 vulnerabilities

2024-06-27 21:08:32

cve

CVE-2023-6237

2024-04-25 07:15:45

nessus

Amazon Linux 2023 : openssl, openssl-devel, openssl-libs (ALAS2023-2024-520)

2024-02-20 00:00:00

SUSE SLED15 / SLES15 / openSUSE 15 Security Update : openssl-3 (SUSE-SU-2024:0172-1)

2024-01-22 00:00:00

IBM MQ 9.0 <= 9.0.0.24 / 9.1 <= 9.1.0.21 / 9.2 <= 9.2.0.25 / 9.3 <= 9.3.0.17 (7149584)

2024-04-30 00:00:00

freebsd

OpenSSL -- Multiple vulnerabilities

2024-01-30 00:00:00

ibm

Security Bulletin: IBM MQ Advanced Message Security on IBM i platform is affected by multiple issues in OpenSSL (CVE-2023-6237 and CVE-2024-0727)

2024-04-26 19:52:43

Security Bulletin: openssl-src-300.2.1+3.2.0.crate is vulnerable to CVE-2024-0727, CVE-2023-6129, and CVE-2023-6237 used in IBM Maximo Application Suite - Edge Data Collector

2024-06-03 12:11:45

Security Bulletin: AIX is vulnerable to a denial of service (CVE-2023-5678, CVE-2023-6129, CVE-2023-6237) and an attacker may obtain sensitive information (CVE-2023-5363) due to OpenSSL

2024-01-25 21:15:41

mageia

Updated quictls packages fix security vulnerabilities

2024-02-15 02:02:34

Updated openssl packages fix security vulnerabilities

2024-02-04 05:49:27

aix

AIX is vulnerable to a denial of service (CVE-2023-5678 CVE-2023-6129 CVE-2023-6237) and an attacker may obtain sensitive information (CVE-2023-5363) due to OpenSSL

2024-01-25 14:11:09

cloudfoundry

USN-6622-1: OpenSSL vulnerabilities | Cloud Foundry

2024-02-29 00:00:00

ubuntu

OpenSSL vulnerabilities

2024-02-05 00:00:00

redhat

(RHSA-2024:2447) Low: openssl and openssl-fips-provider security update

2024-04-30 06:15:44

(RHSA-2024:2933) Important: logging for Red Hat OpenShift security update

2024-05-23 06:15:17

(RHSA-2024:2901) Low: Custom Metrics Autoscaler Operator for Red Hat OpenShift 2.12.1-394 Security Update

2024-05-23 14:07:36

almalinux

Low: openssl and openssl-fips-provider security update

2024-04-30 00:00:00

oraclelinux

openssl and openssl-fips-provider security update

2024-05-03 00:00:00

HP ThinPro 8.0 SP 9 Security Updates

2024-06-17 00:00:00

Solutions

Vulnerabilities intelligence
Perimeter control tool
Linux scanner
Windows scanner
Developers SDK
Security Intelligence feeds

Database

Vulnerabilities
Exploits
Security News
BugBounty
Wild Exploited
Top Vulnerabilities
CVE Feed

Resources

Statics & Sources
Plugins
API docs
FAQ
Blog
Glossary

Company

About
Contacts
Pricing
EULA
Privacy Policy
Submission Policy
OpenSource

@2024 Vulners Inc

6.2 Medium

AI Score

Confidence

High

0.0004 Low

EPSS

Percentile

10.4%

JSON

Related for ROS-20240503-11