There is a type confusion vulnerability relating to X.400 address processing inside an X.509 GeneralName. X.400 addresses were parsed as an ASN1_STRING but the public structure definition for GENERAL_NAME incorrectly specified the type of the x400Address field as ASN1_TYPE.
For more information visit: https://nvd.nist.gov/vuln/detail/CVE-2023-0286
CVSS 3 : 7.5
|Lighthouse||OpenSSL||Impacted,This issue will be resolved in the next release|
Impacted,This issue will be resolved in the next release
Classic Console IM7200
Article is closed for comments.