Lucene search
K

4 matches found

RedHat Linux
RedHat Linux
added 2026/06/29 2:55 a.m.7 views

httpd: mod_md: unrestricted OCSP response leads to resource exhaustion

A flaw was found in the modmd module of httpd. When processing OCSP Online Certificate Status Protocol responses from a malicious or compromised OCSP responder, the module fails to enforce proper size limits on the incoming data. This issue leads to memory exhaustion and a denial of service...

7.3CVSS7AI score0.00628EPSS
Exploits0References5
RedHat Linux
RedHat Linux
added 2026/06/22 3:13 p.m.7 views

httpd: mod_md: unrestricted OCSP response leads to resource exhaustion

A flaw was found in the modmd module of httpd. When processing OCSP Online Certificate Status Protocol responses from a malicious or compromised OCSP responder, the module fails to enforce proper size limits on the incoming data. This issue leads to memory exhaustion and a denial of service...

7.3CVSS5.8AI score0.00628EPSS
Exploits0References5
OSV
OSV
added 2026/03/30 9:17 p.m.6 views

UBUNTU-CVE-2026-32883

Botan is a C++ cryptography library. From version 3.0.0 to before version 3.11.0, during X509 path validation, OCSP responses were checked for an appropriate status code, but critically omitted verifying the signature of the OCSP response itself. This issue has been patched in version 3.11.0...

5.9CVSS5.7AI score0.00154EPSS
Exploits0References3
BDU FSTEC
BDU FSTEC
added 2021/07/08 12:0 a.m.6 views

The vulnerability of the software for interacting with servers via CURL is related to errors in the certificate validation process, which allows attackers to compromise data integrity.

The vulnerability of the software for interacting with servers via CURL is related to errors in the certificate validation process. Exploiting this vulnerability allows a malicious actor to manipulate data integrity through OCSP responses...

5.3CVSS6.7AI score0.04575EPSS
Exploits1References15Affected Software6
Rows per page
Query Builder