4 matches found
Siemens SIMATIC S7-1500 and Ruggedcom ROX Devices Inefficient Algorithmic Complexity (CVE-2024-12243)
A flaw was found in GnuTLS, which relies on libtasn1 for ASN.1 data processing. Due to an inefficient algorithm in libtasn1, decoding certain DER-encoded certificate data can take excessive time, leading to increased resource consumption. This flaw allows a remote attacker to send a specially...
Security Bulletin: Multiple vulnerabilities found in IBM TXSeries for Multiplatforms.
Summary IBM TXSeries for Multiplatforms has been updated in order to address multiple vulnerabilities CVE-2024-12243, CVE-2024-12133, CVE-2024-8176. Vulnerability Details CVEID:CVE-2024-12243 DESCRIPTION: A flaw was found in GnuTLS, which relies on libtasn1 for ASN.1 data processing. Due to an...
Linux Distros Unpatched Vulnerability : CVE-2017-6891
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Two errors in the asn1findnode function lib/parseraux.c within GnuTLS libtasn1 version 4.10 can be exploited to cause a stacked-based buffer overflow by trickin...
CVE-2024-12243
CVE-2024-12243 affects GnuTLS (which uses libtasn1 for ASN.1 DER processing). The issue is an inefficient DER decoding algorithm in libtasn1 that can cause excessive resource consumption when processing certain certificates, enabling remote DoS by sending a crafted certificate and making GnuTLS u...