CVE-2024-34702 | randombit botan up to 2.19.4/3.4.x Certificate Chain SubjectAlternativeName amplification

Posted by Angelo Barbosa | Jul 8, 2024 | CVE

A vulnerability, which was classified as problematic, was found in randombit botan up to 2.19.4/3.4.x. This affects an unknown part of the component Certificate Chain Handler. The manipulation of the argument SubjectAlternativeName leads to asymmetric resource consumption.

This vulnerability is uniquely identified as CVE-2024-34702. It is possible to initiate the attack remotely. There is no exploit available.

It is recommended to upgrade the affected component.

CVE-2024-34702 | randombit botan up to 2.19.4/3.4.x Certificate Chain SubjectAlternativeName amplification

Related Posts

CVE-2023-41781 | ZTE MF258 up to ZTE_STD_V1.0.0B10 SMS Interface cross site scripting

CVE-2024-4447 | dotCMS Direct Web Remoting API UserSessionAjax.getSessionList.dwr authorization

CVE-2023-7091 | Dreamer CMS 4.1.3 /upload/uploadFile file unrestricted upload

CVE-2024-2885 | Google Chrome prior 123.0.6312.86 Dawn use after free