CVE-2024-34702 | randombit botan up to 2.19.4/3.4.x Certificate Chain SubjectAlternativeName amplification

Posted by Angelo Barbosa | Jul 8, 2024 | CVE

A vulnerability, which was classified as problematic, was found in randombit botan up to 2.19.4/3.4.x. This affects an unknown part of the component Certificate Chain Handler. The manipulation of the argument SubjectAlternativeName leads to asymmetric resource consumption.

This vulnerability is uniquely identified as CVE-2024-34702. It is possible to initiate the attack remotely. There is no exploit available.

It is recommended to upgrade the affected component.

CVE-2024-34702 | randombit botan up to 2.19.4/3.4.x Certificate Chain SubjectAlternativeName amplification

Related Posts

CVE-2024-6436 | Rockwell Automation SequenceManager prior 2.0 denial of service

CVE-2024-43946 | SKT Themes SKT Blocks Plugin up to 1.5 on WordPress cross site scripting

CVE-2024-30722 | ROS Kinetic Kame 1 ROS Node denial of service

CVE-2024-22491 | beetl-bbs 2.0 post/save cross site scripting