CVE-2024-23979

CVSS 3.1 Score 7.5 of 10 (high)

Details

Published Feb 14, 2024
CWE ID 770

Summary

CVE-2024-23979 is a newly disclosed vulnerability affecting SSL Client Certificate LDAP or Certificate Revocation List Distribution Point (CRLDP) authentication profiles on virtual servers. When these profiles are configured, undisclosed requests can trigger an increase in CPU resource utilization. It is important to note that only versions of the software that are still under technical support are subject to evaluation and mitigation for this issue.

Ligh bulbPrevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

Share