Integer Overflow Vulnerability in RELIC: Arbitrary Code Execution and Denial of Service in bn_get_prime()

Integer Overflow Vulnerability in RELIC: Arbitrary Code Execution and Denial of Service in bn_get_prime()

CVE-2023-36327 · CRITICAL Severity

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

Integer Overflow vulnerability in RELIC before commit 421f2e91cf2ba42473d4d54daf24e295679e290e, allows attackers to execute arbitrary code and cause a denial of service in pos argument in bn_get_prime function.

Learn more about our Web Application Penetration Testing UK.