Lucene search
K

54 matches found

OSV
OSV
added 2023/03/28 3:15 p.m.26 views

CVE-2023-0465

Applications that use a non-default option when verifying certificates may be vulnerable to an attack from a malicious CA to circumvent certain checks. Invalid certificate policies in leaf certificates are silently ignored by OpenSSL and other certificate policy checks are skipped for that...

5.3CVSS6.5AI score
Exploits0References9
UbuntuCve
UbuntuCve
added 2023/03/28 3:15 p.m.42 views

CVE-2023-0465

Applications that use a non-default option when verifying certificates may be vulnerable to an attack from a malicious CA to circumvent certain checks. Invalid certificate policies in leaf certificates are silently ignored by OpenSSL and other certificate policy checks are skipped for that...

5.3CVSS6.7AI score0.01583EPSS
Exploits0References4
Cvelist
Cvelist
added 2023/03/28 2:30 p.m.37 views

CVE-2023-0465 Invalid certificate policies in leaf certificates are silently ignored

Applications that use a non-default option when verifying certificates may be vulnerable to an attack from a malicious CA to circumvent certain checks. Invalid certificate policies in leaf certificates are silently ignored by OpenSSL and other certificate policy checks are skipped for that...

6.8AI score0.01583EPSS
Exploits0References9
Vulnrichment
Vulnrichment
added 2023/03/28 2:30 p.m.12 views

CVE-2023-0465 Invalid certificate policies in leaf certificates are silently ignored

Applications that use a non-default option when verifying certificates may be vulnerable to an attack from a malicious CA to circumvent certain checks. Invalid certificate policies in leaf certificates are silently ignored by OpenSSL and other certificate policy checks are skipped for that...

5.5AI score0.01583EPSS
Exploits0References9
AlpineLinux
AlpineLinux
added 2023/03/28 2:30 p.m.94 views

CVE-2023-0465

Applications that use a non-default option when verifying certificates may be vulnerable to an attack from a malicious CA to circumvent certain checks. Invalid certificate policies in leaf certificates are silently ignored by OpenSSL and other certificate policy checks are skipped for that...

5.3CVSS7.1AI score0.01583EPSS
Exploits0
CVE
CVE
added 2023/03/28 2:30 p.m.712 views

CVE-2023-0465

CVE-2023-0465 is an OpenSSL certificate policy handling flaw where non-default policy checks are bypassable, allowing invalid certificate policies to pass verification. Connected entries confirm broader impact on Brocade Fabric OS (all versions) and describe remediation: OpenSSL/OpenSSL-based pro...

5.3CVSS6.8AI score0.01583EPSS
Exploits0References9Affected Software1
OSV
OSV
added 2023/03/22 5:15 p.m.2 views

DEBIAN-CVE-2023-0464

A security vulnerability has been identified in all supported versions of OpenSSL related to the verification of X.509 certificate chains that include policy constraints. Attackers may be able to exploit this vulnerability by creating a malicious certificate chain that triggers exponential use of...

7.5CVSS6.1AI score0.03658EPSS
Exploits0References1
Prion
Prion
added 2023/03/22 5:15 p.m.70 views

Design/Logic Flaw

A security vulnerability has been identified in all supported versions of OpenSSL related to the verification of X.509 certificate chains that include policy constraints. Attackers may be able to exploit this vulnerability by creating a malicious certificate chain that triggers exponential use of...

5CVSS7.5AI score0.03658EPSS
Exploits0References9Affected Software1
OSV
OSV
added 2023/03/22 5:15 p.m.3 views

UBUNTU-CVE-2023-0464

A security vulnerability has been identified in all supported versions of OpenSSL related to the verification of X.509 certificate chains that include policy constraints. Attackers may be able to exploit this vulnerability by creating a malicious certificate chain that triggers exponential use of...

7.5CVSS6.5AI score0.03658EPSS
Exploits0References5
Positive Technologies
Positive Technologies
added 2023/03/08 12:0 a.m.5 views

PT-2023-2343

Name of the Vulnerable Software and Affected Versions OpenSSL affected versions not specified Description A security issue has been identified in OpenSSL related to the verification of X.509 certificate chains that include policy constraints. Attackers may be able to exploit this issue by creatin...

9.1CVSS7.8AI score0.99999EPSS
Exploits22References319
SUSE CVE
SUSE CVE
added 2023/02/15 3:30 a.m.6 views

SUSE CVE-2022-3996

If an X.509 certificate contains a malformed policy constraint and policy processing is enabled, then a write lock will be taken twice recursively. On some operating systems most widely: Windows this results in a denial of service when the affected process hangs. Policy processing being enabled o...

7.5CVSS6.4AI score0.0123EPSS
Exploits0References4
Veracode
Veracode
added 2023/01/06 8:19 a.m.64 views

Improper Locking

openssl is vulnerable to denial of service DoS attacks. When an X.509 certificate contains a malformed policy constraint and policy processing is enabled, then a write lock will be taken twice recursively. On some operating systems this results in a denial of service when the affected process han...

7.5CVSS7.2AI score0.0123EPSS
Exploits0References5Affected Software2
Tenable Nessus
Tenable Nessus
added 2022/12/21 12:0 a.m.40 views

SUSE SLED15: libopenssl-3-devel / libopenssl-3-devel-32bit / libopenssl3 / etc (SUSE-SU-2022:4586-1)

The remote SUSE Linux SLED15 / SLEDSAP15 / SLES15 / SLESSAP15 / openSUSE 15 host has packages installed that are affected by multiple vulnerabilities as referenced in the SUSE-SU-2022:4586-1 advisory. - CVE-2022-3996: Fixed X.509 Policy Constraints Double Locking bsc1206374 Tenable has extracted...

7.5CVSS7.1AI score0.91153EPSS
Exploits2References6
F5 Networks
F5 Networks
added 2022/12/15 5:48 p.m.7 views

K000130024: OpenSSL vulnerability CVE-2022-3996

Security Advisory Description If an X.509 certificate contains a malformed policy constraint and policy processing is enabled, then a write lock will be taken twice recursively. On some operating systems most widely: Windows this results in a denial of service when the affected process hangs...

7.5CVSS6.9AI score0.0123EPSS
Exploits0
RedhatCVE
RedhatCVE
added 2022/12/14 11:4 a.m.48 views

CVE-2022-3996

A vulnerability was found in OpenSSL. This security flaw occurs if an X.509 certificate contains a malformed policy constraint and policy processing is enabled, then a write lock will be taken twice recursively. On some operating systems most widely: Windows, this issue results in a denial of...

5.3CVSS1.9AI score0.0123EPSS
Exploits0References3
Github Security Blog
Github Security Blog
added 2022/12/13 6:30 p.m.29 views

Denial of service by double-checked locking in openssl-src

If an X.509 certificate contains a malformed policy constraint and policy processing is enabled, then a write lock will be taken twice recursively. On some operating systems most widely: Windows this results in a denial of service when the affected process hangs. Policy processing being enabled o...

7.5CVSS7.4AI score0.0123EPSS
Exploits0References4Affected Software1
OSV
OSV
added 2022/12/13 4:15 p.m.4 views

DEBIAN-CVE-2022-3996

If an X.509 certificate contains a malformed policy constraint and policy processing is enabled, then a write lock will be taken twice recursively. On some operating systems most widely: Windows this results in a denial of service when the affected process hangs. Policy processing being enabled o...

7.5CVSS7AI score0.0123EPSS
Exploits0References1
OSV
OSV
added 2022/12/13 4:15 p.m.7 views

AZL-40306 CVE-2022-3996 affecting package edk2 for versions less than 20240223gitedc6681206c1-2

If an X.509 certificate contains a malformed policy constraint and policy processing is enabled, then a write lock will be taken twice recursively. On some operating systems most widely: Windows this results in a denial of service when the affected process hangs. Policy processing being enabled o...

7.5CVSS5.7AI score0.0123EPSS
Exploits0References1
OSV
OSV
added 2022/12/13 4:15 p.m.6 views

ALPINE-CVE-2022-3996

If an X.509 certificate contains a malformed policy constraint and policy processing is enabled, then a write lock will be taken twice recursively. On some operating systems most widely: Windows this results in a denial of service when the affected process hangs. Policy processing being enabled o...

7.5CVSS6.9AI score0.0123EPSS
Exploits0References1
Prion
Prion
added 2022/12/13 4:15 p.m.58 views

Design/Logic Flaw

If an X.509 certificate contains a malformed policy constraint and policy processing is enabled, then a write lock will be taken twice recursively. On some operating systems most widely: Windows this results in a denial of service when the affected process hangs. Policy processing being enabled o...

5CVSS6.5AI score0.01625EPSS
Exploits0References2Affected Software1
Rows per page
Query Builder