CVE-2024-9143 | OpenSSL up to 3.3.2 Elliptic Curve API EC_GROUP_new_curve_GF2m out-of-bounds write (Nessus ID 209154)
A vulnerability was found in OpenSSL up to 3.3.2 and classified as critical. Affected by this issue is the function EC_GROUP_new_curve_GF2m of the component Elliptic Curve API. The manipulation leads to out-of-bounds write.
This vulnerability is handled as CVE-2024-9143. The attack may be launched remotely. There is no exploit available.
It is recommended to upgrade the affected component.