CVE-2023-5678

Summary

CVE-2023-5678: This vulnerability affects functions in OpenSSL, specifically DH_generate_key() and DH_check_pub_key(), that generate or check X9.42 Diffie-Hellman keys and parameters. If these functions are provided with excessively long keys or parameters obtained from untrusted sources, applications may experience significant delays. This issue can result in a Denial of Service attack, as applications may become unresponsive or fail to process requests. The OpenSSL SSL/TLS implementation and FIPS providers are not affected. Other OpenSSL functions, including DH_check_pub_key_ex(), EVP_PKEY_public_check(), and EVP_PKEY_generate(), as well as the OpenSSL pkey and genpkey command line applications, are also vulnerable.

Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.