CVE-2024-24783 | crypto-x509 up to 1.21.7/1.22.0 on Go Certificate Chain crypto/tls null pointer dereference

Inserito da Angelo Barbosa | Mar 6, 2024 | CVE

A vulnerability has been found in crypto-x509 up to 1.21.7/1.22.0 on Go and classified as problematic. This vulnerability affects unknown code of the file crypto/tls of the component Certificate Chain Handler. The manipulation leads to null pointer dereference.

This vulnerability was named CVE-2024-24783. The attack can be initiated remotely. There is no exploit available.

It is recommended to upgrade the affected component.

CVE-2024-24783 | crypto-x509 up to 1.21.7/1.22.0 on Go Certificate Chain crypto/tls null pointer dereference

Post correlati

CVE-2024-4862 | WPBITS Addons for Elementor Page Builder Plugin up to 1.5 on WordPress Widgets cross site scripting

CVE-2024-36840 | Boelter Blue System Management 1.3 news_details.php id sql injection

CVE-2024-1294 | Sunshine Photo Cart Plugin up to 3.0.24 on WordPress Invoice information disclosure

CVE-2024-20376 | Cisco IP Phone 6800/IP Phone 7800/IP Phone 8800 up to 12.0.4 Web-based Management Interface out-of-bounds write (cisco-sa-ipphone-multi-vulns-cXAhCvS)