CVE-2021-38597

Опубликовано: 12 авг. 2021

Источник: debian

EPSS Низкий

Описание

wolfSSL before 4.8.1 incorrectly skips OCSP verification in certain situations of irrelevant response data that contains the NoCheck extension.

Пакет	Статус	Версия исправления	Релиз	Тип
wolfssl	fixed	5.0.0-1		package
wolfssl	fixed	4.6.0+p1-0+deb11u1	bullseye	package

https://github.com/wolfSSL/wolfssl/commit/f93083be72a3b3d956b52a7ec13f307a27b6e093

EPSS

Процентиль: 36%

0.00152

Низкий

CVE-2021-38597

CVSS3: 5.9

ubuntu

больше 4 лет назад

wolfSSL before 4.8.1 incorrectly skips OCSP verification in certain situations of irrelevant response data that contains the NoCheck extension.

CVE-2021-38597

CVSS3: 5.9

nvd

больше 4 лет назад

wolfSSL before 4.8.1 incorrectly skips OCSP verification in certain situations of irrelevant response data that contains the NoCheck extension.

GHSA-r434-53mc-rhw4

github

больше 3 лет назад

wolfSSL before 4.8.1 incorrectly skips OCSP verification in certain situations of irrelevant response data that contains the NoCheck extension.

EPSS

Процентиль: 36%

0.00152

Низкий