Security bypass vulnerability in CA certificate check in OpenSSLDeprecated |
ID: oval:org.secpod.oval:def:70495 | Date: (C)2021-03-26 (M)2024-01-23 |
Class: VULNERABILITY | Family: windows |
The host is installed with OpenSSL 1.1.1h through 1.1.1j and is prone to a security bypass vulnerability. A flaw is present in the application which fails to properly handle the check to disallow certificates in the chain that have explicitly encoded elliptic curve parameters. Successful exploitation allows an attacker to bypass the check that non-CA certificates must not be able to issue other certificates.
Platform: |
Microsoft Windows 11 |
Microsoft Windows Server 2022 |
Microsoft Windows 7 |
Microsoft Windows Server 2008 |
Microsoft Windows 8.1 |
Microsoft Windows Server 2012 R2 |
Microsoft Windows Server 2008 R2 |
Microsoft Windows Server 2012 |
Microsoft Windows Server 2016 |
Microsoft Windows Server 2019 |
Microsoft Windows 10 |