CVE Catalog

CVE-2024-2511

Low
Published: Translated: NVD NIST

Summary

A vulnerability in the OpenSSL library allows unbounded memory growth when processing TLSv1.3 sessions in certain non-default server configurations. An attacker can exploit this to cause a Denial of Service (DoS).

Risk Assessment

The risk is that an attacker can exhaust server memory, leading to service unavailability for legitimate users.

Recommendation

Immediately update OpenSSL to the patched version and review TLS server configurations to remove non-default settings that may trigger the issue.

Original NVD description (English source)

Issue summary: Some non-default TLS server configurations can cause unbounded memory growth when processing TLSv1.3 sessions Impact summary: An attacker may exploit certain server configurations to trigger unbounded memory growth that would lead to a Denial of Service This problem can occur in TLS

Vulnerability data from NVD (NIST) · CISA KEV · EPSS