March 6, 2025
Proactive Defense: The Importance of Incident Response Planning in Cybersecurity
Rewterz Threat Update – Highly Critical Microsoft SharePoint Vulnerabilities Being Actively Exploited by Threat Actors
January 15, 2024Rewterz Threat Alert – GandCrab or .CRAB Ransomware – Active IOCs
January 15, 2024Rewterz Threat Update – Highly Critical Microsoft SharePoint Vulnerabilities Being Actively Exploited by Threat Actors
January 15, 2024Rewterz Threat Alert – GandCrab or .CRAB Ransomware – Active IOCs
January 15, 2024
Severity
Medium
Analysis Summary
CVE-2023-6129
OpenSSL is vulnerable to a denial of service, caused by a flaw in the POLY1305 MAC (message authentication code) implementation. By sending a specially crafted request, a remote attacker could exploit this vulnerability to cause a denial of service condition.
Impact
- Denial of Service
Indicators Of Compromise
CVE
- CVE-2023-6129
Affected Vendors
OpenSSL
Affected Products
- OpenSSL 3.0.0
- OpenSSL 3.1.0
- OpenSSL 3.2.0
Remediation
Refer to OpenSSL Security Advisory for patch, upgrade or suggested workaround information.