CVSS3
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
NONE
Availability Impact
HIGH
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:H
AI Score
Confidence
High
EPSS
Percentile
16.3%
The OpenSSL project reports:
Possible denial of service in X.509 name checks [Moderate severity]
Applications performing certificate name checks (e.g., TLS clients
checking server certificates) may attempt to read an invalid
memory address resulting in abnormal termination of the application
process.
SSL_select_next_proto buffer overread [Low severity]
Calling the OpenSSL API function SSL_select_next_proto with an empty
supported client protocols buffer may cause a crash or memory
contents to be sent to the peer.
OS | Version | Architecture | Package | Version | Filename |
---|---|---|---|---|---|
FreeBSD | any | noarch | openssl | < 3.0.15,1 | UNKNOWN |
FreeBSD | any | noarch | openssl31 | < 3.1.7 | UNKNOWN |
FreeBSD | any | noarch | openssl32 | < 3.2.3 | UNKNOWN |
FreeBSD | any | noarch | openssl33 | < 3.3.2 | UNKNOWN |
FreeBSD | any | noarch | openssl-quictls | < 3.0.15 | UNKNOWN |
FreeBSD | any | noarch | openssl31-quictls | < 3.1.7 | UNKNOWN |
FreeBSD | any | noarch | freebsd | = 14.1 | UNKNOWN |
FreeBSD | any | noarch | freebsd | < 14.1_4 | UNKNOWN |
CVSS3
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
NONE
Availability Impact
HIGH
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:H
AI Score
Confidence
High
EPSS
Percentile
16.3%