CVE-2024-2511

EPSS 9.05%
Veröffentlicht 08.04.2024 14:15:07
Zuletzt bearbeitet 12.05.2026 12:16:33
Quelle openssl-security@openssl.org
CVE-Watchlists
Login
Unerledigt
Login

Unbounded memory growth with session handling in TLSv1.3

Issue summary: Some non-default TLS server configurations can cause unbounded
memory growth when processing TLSv1.3 sessions

Impact summary: An attacker may exploit certain server configurations to trigger
unbounded memory growth that would lead to a Denial of Service

This problem can occur in TLSv1.3 if the non-default SSL_OP_NO_TICKET option is
being used (but not if early_data support is also configured and the default
anti-replay protection is in use). In this case, under certain conditions, the
session cache can get into an incorrect state and it will fail to flush properly
as it fills. The session cache will continue to grow in an unbounded manner. A
malicious client could deliberately create the scenario for this failure to
force a Denial of Service. It may also happen by accident in normal operation.

This issue only affects TLS servers supporting TLSv1.3. It does not affect TLS
clients.

The FIPS modules in 3.2, 3.1 and 3.0 are not affected by this issue. OpenSSL
1.0.2 is also not affected by this issue.

Betroffene Produkte Warnungen 0 Metriken 2 CWE 1 Referenzen 18

CNA 35 VulnDex Vulnerability Enrichment 28

Daten sind bereitgestellt durch das CVE Programm von Authorized Data Publishers (ADP) (Unstrukturiert)

HerstellerSiemens

≫

Produkt RUGGEDCOM RM1224 LTE(4G) EU

Default Statusunknown

Version 0

Version < V8.2

Status affected

HerstellerSiemens

≫

Produkt RUGGEDCOM RM1224 LTE(4G) NAM

Default Statusunknown

Version 0

Version < V8.2

Status affected

HerstellerSiemens

≫

Produkt RUGGEDCOM RST2428P

Default Statusunknown

Version 0

Version < V3.1

Status affected

HerstellerSiemens

≫

Produkt SCALANCE M804PB

Default Statusunknown

Version 0

Version < V8.2

Status affected

HerstellerSiemens

≫

Produkt SCALANCE M812-1 ADSL-Router

Default Statusunknown

Version 0

Version < V8.2

Status affected

HerstellerSiemens

≫

Produkt SCALANCE M812-1 ADSL-Router

Default Statusunknown

Version 0

Version < V8.2

Status affected

HerstellerSiemens

≫

Produkt SCALANCE M816-1 ADSL-Router

Default Statusunknown

Version 0

Version < V8.2

Status affected

HerstellerSiemens

≫

Produkt SCALANCE M816-1 ADSL-Router

Default Statusunknown

Version 0

Version < V8.2

Status affected

HerstellerSiemens

≫

Produkt SCALANCE M826-2 SHDSL-Router

Default Statusunknown

Version 0

Version < V8.2

Status affected

HerstellerSiemens

≫

Produkt SCALANCE M874-2

Default Statusunknown

Version 0

Version < V8.2

Status affected

HerstellerSiemens

≫

Produkt SCALANCE M874-3

Default Statusunknown

Version 0

Version < V8.2

Status affected

HerstellerSiemens

≫

Produkt SCALANCE M874-3 3G-Router (CN)

Default Statusunknown

Version 0

Version < V8.2

Status affected

HerstellerSiemens

≫

Produkt SCALANCE M876-3

Default Statusunknown

Version 0

Version < V8.2

Status affected

HerstellerSiemens

≫

Produkt SCALANCE M876-3 (ROK)

Default Statusunknown

Version 0

Version < V8.2

Status affected

HerstellerSiemens

≫

Produkt SCALANCE M876-4

Default Statusunknown

Version 0

Version < V8.2

Status affected

HerstellerSiemens

≫

Produkt SCALANCE M876-4 (EU)

Default Statusunknown

Version 0

Version < V8.2

Status affected

HerstellerSiemens

≫

Produkt SCALANCE M876-4 (NAM)

Default Statusunknown

Version 0

Version < V8.2

Status affected

HerstellerSiemens

≫

Produkt SCALANCE MUM853-1 (A1)

Default Statusunknown

Version 0

Version < V8.2

Status affected

HerstellerSiemens

≫

Produkt SCALANCE MUM853-1 (B1)

Default Statusunknown

Version 0

Version < V8.2

Status affected

HerstellerSiemens

≫

Produkt SCALANCE MUM853-1 (EU)

Default Statusunknown

Version 0

Version < V8.2

Status affected

HerstellerSiemens

≫

Produkt SCALANCE MUM856-1 (A1)

Default Statusunknown

Version 0

Version < V8.2

Status affected

HerstellerSiemens

≫

Produkt SCALANCE MUM856-1 (B1)

Default Statusunknown

Version 0

Version < V8.2

Status affected

HerstellerSiemens

≫

Produkt SCALANCE MUM856-1 (CN)

Default Statusunknown

Version 0

Version < V8.2

Status affected

HerstellerSiemens

≫

Produkt SCALANCE MUM856-1 (EU)

Default Statusunknown

Version 0

Version < V8.2

Status affected

HerstellerSiemens

≫

Produkt SCALANCE MUM856-1 (RoW)

Default Statusunknown

Version 0

Version < V8.2

Status affected

HerstellerSiemens

≫

Produkt SCALANCE S615 EEC LAN-Router

Default Statusunknown

Version 0

Version < V8.2

Status affected

HerstellerSiemens

≫

Produkt SCALANCE S615 LAN-Router

Default Statusunknown

Version 0

Version < V8.2

Status affected

HerstellerSiemens

≫

Produkt SCALANCE XC-300/XR-300/XC-400/XR-500WG/XR-500 family

Default Statusunknown

Version 0

Version < *

Status unaffected

HerstellerSiemens

≫

Produkt SCALANCE XCM-/XRM-/XCH-/XRH-300 family

Default Statusunknown

Version 0

Version < V3.1

Status affected

HerstellerSiemens

≫

Produkt SIMATIC S7-1500 TM MFP - GNU/Linux subsystem

Default Statusunknown

Version 0

Version < *

Status affected

HerstellerSiemens

≫

Produkt SIMATIC S7-1500 CPU 1518-4 PN/DP MFP

Default Statusunknown

Version V3.1.0

Version < V3.1.5

Status affected

HerstellerSiemens

≫

Produkt SIMATIC S7-1500 CPU 1518-4 PN/DP MFP

Default Statusunknown

Version V3.1.0

Version < V3.1.5

Status affected

HerstellerSiemens

≫

Produkt SIMATIC S7-1500 CPU 1518F-4 PN/DP MFP

Default Statusunknown

Version V3.1.0

Version < V3.1.5

Status affected

HerstellerSiemens

≫

Produkt SIMATIC S7-1500 CPU 1518F-4 PN/DP MFP

Default Statusunknown

Version V3.1.0

Version < V3.1.5

Status affected

HerstellerSiemens

≫

Produkt SIPLUS S7-1500 CPU 1518-4 PN/DP MFP

Default Statusunknown

Version V3.1.0

Version < V3.1.5

Status affected

VulnDex Vulnerability Enrichment

Diese Information steht angemeldeten Benutzern zur Verfügung.

Zu dieser CVE wurde keine Warnung gefunden.

EPSS Metriken
Typ	Quelle	Score	Percentile
EPSS	FIRST.org	9.05%	0.927

CVSS Metriken
Quelle	Base Score	Exploit Score	Impact Score	Vector String
134c704f-9b21-4f2e-91b3-4a467353bcc0	5.9	2.2	3.6	CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H

CWE-1325 Improperly Controlled Sequential Memory Allocation

The product manages a group of objects or resources and performs a separate memory allocation for each object, but it does not properly limit the total amount of memory that is consumed by all of the combined objects.

https://cert-portal.siemens.com/productcert/html/ssa-769027.html

https://github.com/openssl/openssl/commit/7e4d731b1c07201ad9374c1cd9ac5263bdf35bce

https://github.com/openssl/openssl/commit/b52867a9f618bb955bed2a3ce3db4d4f97ed8e5d

https://github.com/openssl/openssl/commit/e9d7083e241670332e0443da0f0d4ffb52829f08

https://github.openssl.org/openssl/extended-releases/commit/5f8d25770ae6437db119dfc951e207271a326640

https://www.openssl.org/news/secadv/20240408.txt

http://www.openwall.com/lists/oss-security/2024/04/08/5

https://security.netapp.com/advisory/ntap-20240503-0013/

https://cert-portal.siemens.com/productcert/html/ssa-915275.html

https://cert-portal.siemens.com/productcert/html/ssa-354112.html

https://lists.debian.org/debian-lts-announce/2024/10/msg00033.html

https://lists.debian.org/debian-lts-announce/2024/11/msg00000.html