16May
CVE-2024-4603 | OpenSSL up to 3.0.13/3.1.5/3.2.1/3.3.0 DSA crypto/dsa/dsa_check.c EVP_PKEY_param_check/EVP_PKEY_public_check denial of service
A vulnerability classified as problematic was found in OpenSSL up to 3.0.13/3.1.5/3.2.1/3.3.0. Affected by this vulnerability is the functionEVP_PKEY_param_check/EVP_PKEY_public_check
of the file crypto/dsa/dsa_check.c of the component DSA Handler. The manipulation leads to denial of service.
This vulnerability is known as CVE-2024-4603. The attack can be launched remotely. There is no exploit available.
It is recommended to upgrade the affected component.