- Description
- A certificate with a URI which has a IPv6 address with a zone ID may incorrectly satisfy a URI name constraint that applies to the certificate chain. Certificates containing URIs are not permitted in the web PKI, so this only affects users of private PKIs which make use of URIs.
- Source
- security@golang.org
- NVD status
- Awaiting Analysis
CVSS 3.1
- Type
- Secondary
- Base score
- 6.1
- Impact score
- 2.7
- Exploitability score
- 2.8
- Vector string
- CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N
- Severity
- MEDIUM
- Hype score
- Not currently trending
🚨 Lambda Watchdog detected a new MEDIUM severity CVE 🚨 CVE-2024-45341 was detected in the latest AWS Lambda image scan affecting the stdlib package in 23 images. Check the full report 👉 https://t.co/6EUGaPyRZk #AWS #Lambda #CVE #CloudSecurity #Serverless
@LambdaWatchdog
29 Jan 2025
0 Impressions
0 Retweets
0 Likes
0 Bookmarks
0 Replies
0 Quotes
New post from https://t.co/uXvPWJy6tj (CVE-2024-45341 | Google Go up to 1.22.10/1.23.4 crypto-x509 crypto/x509 certificate validation (Nessus ID 214540)) has been published on https://t.co/pXgl8IZx6V
@WolfgangSesin
28 Jan 2025
19 Impressions
0 Retweets
0 Likes
0 Bookmarks
0 Replies
0 Quotes
CVE-2024-45341 A certificate with a URI which has a IPv6 address with a zone ID may incorrectly satisfy a URI name constraint that applies to the certificate chain. Certificates con… https://t.co/ERmqXSsauF
@CVEnew
28 Jan 2025
265 Impressions
0 Retweets
0 Likes
0 Bookmarks
0 Replies
0 Quotes
🎉 Go 1.23.5 and 1.22.11 are released! 🔒 Security: Includes security fixes for CVE-2024-45336 and CVE-2024-45341 in crypto/x509 and net/http 📡 Announcement: https://t.co/Krmqoh56fR 📦 Download: https://t.co/YpdYnPtSqA #golang https://t.co/kV53XHrnuT
@golang
16 Jan 2025
24441 Impressions
113 Retweets
463 Likes
16 Bookmarks
1 Reply
11 Quotes