vulnerability
Ubuntu: (CVE-2024-41996): openssl vulnerability
| Severity | CVSS | Published | Added | Modified |
|---|---|---|---|---|
| 8 | (AV:N/AC:L/Au:N/C:N/I:N/A:C) | Aug 26, 2024 | Jun 26, 2025 | Mar 27, 2026 |
Severity
8
CVSS
(AV:N/AC:L/Au:N/C:N/I:N/A:C)
Published
Aug 26, 2024
Added
Jun 26, 2025
Modified
Mar 27, 2026
Description
Validating the order of the public keys in the Diffie-Hellman Key Agreement Protocol, when an approved safe prime is used, allows remote attackers (from the client side) to trigger unnecessarily expensive server-side DHE modular-exponentiation calculations. The client may cause asymmetric resource consumption. The basic attack scenario is that the client must claim that it can only communicate with DHE, and the server must be configured to allow DHE and validate the order of the public key.
Solution
no-fix-ubuntu-package
References
- CVE-2024-41996
- https://attackerkb.com/topics/CVE-2024-41996
- CWE-295
- EUVD-EUVD-2024-39313
- https://dheatattack.gitlab.io/details/
- https://dheatattack.gitlab.io/faq/
- https://euvd.enisa.europa.eu/vulnerability/EUVD-2024-39313
- https://gist.github.com/c0r0n3r/abccc14d4d96c0442f3a77fa5ca255d1
- https://github.com/openssl/openssl/pull/25088
- https://www.cve.org/CVERecord?id=CVE-2024-41996
Rapid7 Labs
2026 Global Threat Landscape Report
The predictive window has collapsed. Exploitation follows disclosure in days. See how attackers are accelerating and how to stay ahead.