CVE-2024-45341
Published: 28 January 2025
Summary
CVE-2024-45341 is a medium-severity an unspecified weakness vulnerability in Go (inferred from references). Its CVSS base score is 6.1 (Medium).
Operationally, ranked at the 30.4th percentile by exploit likelihood (below the median); it is not currently listed in the CISA KEV catalog.
EU & UK References
- 🇪🇺 ENISA EUVD: EUVD-2024-41742
Vulnerability details
A certificate with a URI which has a IPv6 address with a zone ID may incorrectly satisfy a URI name constraint that applies to the certificate chain. Certificates containing URIs are not permitted in the web PKI, so this only…
more
affects users of private PKIs which make use of URIs.
- CWE(s)
Related Threats
No named actor attribution yet. ATT&CK technique mapping in progress for this CVE.
Affected Assets
Mitigating Controls
No mitigating controls mapped yet. The per-CVE control annotator has not reached this CVE.