Description
A denial of service flaw was found in OpenSSL 0.9.8, 1.0.1, 1.0.2 through 1.0.2h, and 1.1.0 in the way the TLS/SSL protocol defined processing of ALERT packets during a connection handshake. A remote attacker could use this flaw to make a TLS/SSL server consume an excessive amount of CPU and fail to accept connections from other clients.
Remediation
References
Related Vulnerabilities
Microsoft SQL Server CVE-2023-21713 Vulnerability (CVE-2023-21713)
Joomla! Core 3.x.x Cross-Site Scripting (3.0.0 - 3.9.27)
WordPress Plugin Magn WP Drag and Drop Upload Arbitrary File Upload (1.1.4)
MySQL Other Vulnerability (CVE-2007-2692)
MyBB Cross-Site Request Forgery (CSRF) Vulnerability (CVE-2008-0788)