CVE-2023-5678
Summary
A vulnerability in OpenSSL allows for Denial of Service attacks by generating or checking excessively long X9.42 Diffie-Hellman keys or parameters. This can cause significant delays in applications using specific OpenSSL functions, especially when processing untrusted input.
IFF Assessment
FOE
This vulnerability can lead to Denial of Service, which is detrimental to the availability of systems and services.
Severity
5.3
Medium
Defender Context
Defenders should be aware of this Denial of Service vulnerability affecting OpenSSL's key generation and checking functions. Prioritizing updates to affected OpenSSL versions is crucial to prevent potential disruptions caused by attackers exploiting long key parameters.