There is a type confusion vulnerability relating to X.400 address processing inside an X.509 GeneralName. X.400 addresses were parsed as an ASN1_STRING but the public structure definition for GENERAL_NAME incorrectly specified the type of the x400Address field as ASN1_TYPE.
For more information visit: https://nvd.nist.gov/vuln/detail/CVE-2023-0286
CVSS 3 : 7.5
| Product | Package | Status |
| Lighthouse | OpenSSL | Impacted,This issue will be resolved in the next release |
|
OM1200 OM2200 CM8100 |
OpenSSL |
Impacted,This issue will be resolved in the next release |
|
Classic Console IM7200 CM7100 ACM7000 |
OpenSSL | Not impacted |
Comments
0 comments
Article is closed for comments.