Логотип exploitDog
Консоль
Логотип exploitDog

exploitDog

github логотип

GHSA-mcx8-9rrj-7qxm

Опубликовано: 16 янв. 2024
Источник: github
Github: Не прошло ревью
CVSS3: 5.9

Описание

A vulnerability was found in GnuTLS, where a cockpit (which uses gnuTLS) rejects a certificate chain with distributed trust. This issue occurs when validating a certificate chain with cockpit-certificate-ensure. This flaw allows an unauthenticated, remote client or attacker to initiate a denial of service attack.

A vulnerability was found in GnuTLS, where a cockpit (which uses gnuTLS) rejects a certificate chain with distributed trust. This issue occurs when validating a certificate chain with cockpit-certificate-ensure. This flaw allows an unauthenticated, remote client or attacker to initiate a denial of service attack.

Ссылки

EPSS

Процентиль: 79%
0.01295
Низкий

5.9 Medium

CVSS3

CVE ID

CVE-2024-0567

Дефекты

CWE-347

Связанные уязвимости

ubuntu логотип

CVE-2024-0567

CVSS3: 7.5
ubuntu
почти 2 года назад

A vulnerability was found in GnuTLS, where a cockpit (which uses gnuTLS) rejects a certificate chain with distributed trust. This issue occurs when validating a certificate chain with cockpit-certificate-ensure. This flaw allows an unauthenticated, remote client or attacker to initiate a denial of service attack.

redhat логотип

CVE-2024-0567

CVSS3: 7.5
redhat
почти 2 года назад

A vulnerability was found in GnuTLS, where a cockpit (which uses gnuTLS) rejects a certificate chain with distributed trust. This issue occurs when validating a certificate chain with cockpit-certificate-ensure. This flaw allows an unauthenticated, remote client or attacker to initiate a denial of service attack.

nvd логотип

CVE-2024-0567

CVSS3: 7.5
nvd
почти 2 года назад

A vulnerability was found in GnuTLS, where a cockpit (which uses gnuTLS) rejects a certificate chain with distributed trust. This issue occurs when validating a certificate chain with cockpit-certificate-ensure. This flaw allows an unauthenticated, remote client or attacker to initiate a denial of service attack.

msrc логотип

CVE-2024-0567

CVSS3: 7.5
msrc
почти 2 года назад

Описание отсутствует

debian логотип

CVE-2024-0567

CVSS3: 7.5
debian
почти 2 года назад

A vulnerability was found in GnuTLS, where a cockpit (which uses gnuTL ...

EPSS

Процентиль: 79%
0.01295
Низкий

5.9 Medium

CVSS3

CVE ID

CVE-2024-0567

Дефекты

CWE-347