漏洞信息
尽管我们使用了先进的大模型技术,但其输出仍可能包含不准确或过时的信息。神龙努力确保数据的准确性,但请您根据实际情况进行核实和判断。
Vulnerability Title
OctoRPKI crash when maximum iterations number is reached
Vulnerability Description
Attackers can create long chains of CAs that would lead to OctoRPKI exceeding its max iterations parameter. In consequence it would cause the program to crash, preventing it from finishing the validation and leading to a denial of service. Credits to Donika Mirdita and Haya Shulman - Fraunhofer SIT, ATHENE, who discovered and reported this vulnerability.
CVSS Information
CVSS:3.1/AV:N/AC:H/PR:L/UI:R/S:U/C:N/I:L/A:H
Vulnerability Type
对因果或异常条件的不恰当检查
Vulnerability Title
Cloudflare OctoRPKI 安全漏洞
Vulnerability Description
Cloudflare OctoRPKI是美国Cloudflare公司的Cloudflare平台的RPKI工具箱。 Cloudflare OctoRPKI 存在安全漏洞。攻击者利用该漏洞可以创建过长的CA链,导致OctoRPKI超过其最大迭代参数最终实现程序崩溃,阻止其完成验证并拒绝服务。
CVSS Information
N/A
Vulnerability Type
N/A