Vulnerability identifier: #VU23861
Vulnerability risk: Medium
Exploitation vector: Network
Exploit availability: No
The vulnerability allows a remote attacker to perform a denial of service (DoS) attack.
The vulnerability exists due to infinite loop in the X.509 implementation. A remote attacker can use a specially crafted certificate, consume all available system resources and cause a denial of service condition on the target system.
Install updates from vendor's website.
Vulnerable software versions
USG9500: V500R001C30 - V500R001C60
Can this vulnerability be exploited remotely?
Is there known malware, which exploits this vulnerability?