CVE-2022-25640

Posted on by admin

CVE-2022-25640

In wolfSSL before 5.2.0, a TLS 1.3 server cannot properly enforce a requirement for mutual authentication. A client can simply omit the certificate_verify message from the handshake, and never present a certificate.

Source: CVE-2022-25640

답글 남기기

이메일 주소는 공개되지 않습니다. 필수 필드는 *로 표시됩니다