CVE-2024-9143 | OpenSSL up to 3.3.2 Elliptic Curve API EC_GROUP_new_curve_GF2m out-of-bounds write

Posted by Angelo Barbosa | Oct 16, 2024 | CVE

A vulnerability was found in OpenSSL up to 3.3.2 and classified as critical. Affected by this issue is the function EC_GROUP_new_curve_GF2m of the component Elliptic Curve API. The manipulation leads to out-of-bounds write.

This vulnerability is handled as CVE-2024-9143. The attack may be launched remotely. There is no exploit available.

It is recommended to upgrade the affected component.

CVE-2024-9143 | OpenSSL up to 3.3.2 Elliptic Curve API EC_GROUP_new_curve_GF2m out-of-bounds write

Related Posts

CVE-2024-1318 | Feedzy RSS Aggregator Plugin up to 4.4.2 on WordPress Page authorization

CVE-2023-31728 | Teltonika RUT240 prior 07.04.2 Bridge MOde access control

CVE-2023-38273 | IBM Cloud Pak System 2.3.1.1/2.3.2.0/2.3.3.7 excessive authentication (XFDB-260733)

CVE-2024-34048 | O-RAN RIC I-Release e2mgr E2nodeConfigUpdateNotificationHandler array index