A vulnerability classified as problematic has been found in h2o up to 2.3.0-beta2. Affected is an unknown function of the component X.509 Certificate Handler. The manipulation leads to improper verification of cryptographic signature.

This vulnerability is traded as CVE-2023-41337. The attack can only be done within the local network. There is no exploit available.

It is recommended to apply a patch to fix this issue.