CVE & CISA-KEV Catalog

CVE-2024-0727

MEDIUMEPSS 86th pctl
5.5
CVSS v3
NVD

Description

Issue summary: Processing a maliciously formatted PKCS12 file may lead OpenSSL to crash leading to a potential Denial of Service attack Impact summary: Applications loading files in the PKCS12 format from untrusted sources might terminate abruptly. A file in PKCS12 format can contain certificates and keys and may come from an untrusted source. The PKCS12 specification allows certain fields to be NULL, but OpenSSL does not correctly check for this case. This can lead to a NULL pointer dereference that results in OpenSSL crashing. If an application processes PKCS12 files from an untrusted source using the OpenSSL APIs then that application will be vulnerable to this issue. OpenSSL APIs that are vulnerable to this are: PKCS12_parse(), PKCS12_unpack_p7data(), PKCS12_unpack_p7encdata(), PKCS12_unpack_authsafes() and PKCS12_newpass(). We have also fixed a similar issue in SMIME_write_PKCS7(). However since this function is related to writing data we do not consider it security significant. The FIPS modules in 3.2, 3.1 and 3.0 are not affected by this issue.

How to fix

Remediation Available
opensslDebian
Fixed in:1.1.1w-0+deb11u2CVE-2024-0727
Fixed in:3.0.13-1~deb12u1CVE-2024-0727
Fixed in:3.1.5-1CVE-2024-0727
Fixed in:3.1.5-1CVE-2024-0727
edk2Rocky
Fixed in:0:20240524-6.el9_5RHSA-2024:9088
edk2Red Hat / RHEL
Fixed in:0:20240524-6.el9_5RHSA-2024:9088
edk2-aarch64Rocky
Fixed in:0:20240524-6.el9_5RHSA-2024:9088
edk2-aarch64Red Hat / RHEL
Fixed in:0:20240524-6.el9_5RHSA-2024:9088
edk2-debugsourceRed Hat / RHEL
Fixed in:0:20240524-6.el9_5RHSA-2024:9088
Fixed in:0:20240524-6.el9_5RHSA-2024:9088
edk2-debugsourceRocky
Fixed in:0:20240524-6.el9_5RHSA-2024:9088
Fixed in:0:20240524-6.el9_5RHSA-2024:9088
edk2-ovmfRed Hat / RHEL
Fixed in:0:20240524-6.el9_5RHSA-2024:9088
edk2-ovmfRocky
Fixed in:0:20240524-6.el9_5RHSA-2024:9088
edk2-toolsRed Hat / RHEL
Fixed in:0:20240524-6.el9_5RHSA-2024:9088
Fixed in:0:20240524-6.el9_5RHSA-2024:9088
edk2-toolsRocky
Fixed in:0:20240524-6.el9_5RHSA-2024:9088
Fixed in:0:20240524-6.el9_5RHSA-2024:9088
edk2-tools-debuginfoRocky
Fixed in:0:20240524-6.el9_5RHSA-2024:9088
Fixed in:0:20240524-6.el9_5RHSA-2024:9088
edk2-tools-debuginfoRed Hat / RHEL
Fixed in:0:20240524-6.el9_5RHSA-2024:9088
Fixed in:0:20240524-6.el9_5RHSA-2024:9088
edk2-tools-docRocky
Fixed in:0:20240524-6.el9_5RHSA-2024:9088
edk2-tools-docRed Hat / RHEL
Fixed in:0:20240524-6.el9_5RHSA-2024:9088
opensslRocky
Fixed in:1:3.0.7-27.el9RHSA-2024:2447
Fixed in:1:3.0.7-27.el9RHSA-2024:2447
Fixed in:1:3.0.7-27.el9RHSA-2024:2447
Fixed in:1:3.0.7-27.el9RHSA-2024:2447
Fixed in:1:3.0.7-27.el9RHSA-2024:2447
opensslRed Hat / RHEL
Fixed in:1:3.0.7-27.el9RHSA-2024:2447
Fixed in:1:3.0.7-27.el9RHSA-2024:2447
Fixed in:1:3.0.7-27.el9RHSA-2024:2447
Fixed in:1:3.0.7-27.el9RHSA-2024:2447
Fixed in:1:3.0.7-27.el9RHSA-2024:2447
openssl-debuginfoRed Hat / RHEL
Fixed in:1:3.0.7-27.el9RHSA-2024:2447
Fixed in:1:3.0.7-27.el9RHSA-2024:2447
Fixed in:1:3.0.7-27.el9RHSA-2024:2447
Fixed in:1:3.0.7-27.el9RHSA-2024:2447
Fixed in:1:3.0.7-27.el9RHSA-2024:2447
openssl-debuginfoRocky
Fixed in:1:3.0.7-27.el9RHSA-2024:2447
Fixed in:1:3.0.7-27.el9RHSA-2024:2447
Fixed in:1:3.0.7-27.el9RHSA-2024:2447
Fixed in:1:3.0.7-27.el9RHSA-2024:2447
Fixed in:1:3.0.7-27.el9RHSA-2024:2447
openssl-debugsourceRed Hat / RHEL
Fixed in:1:3.0.7-27.el9RHSA-2024:2447
Fixed in:1:3.0.7-27.el9RHSA-2024:2447
Fixed in:1:3.0.7-27.el9RHSA-2024:2447
Fixed in:1:3.0.7-27.el9RHSA-2024:2447
Fixed in:1:3.0.7-27.el9RHSA-2024:2447
openssl-debugsourceRocky
Fixed in:1:3.0.7-27.el9RHSA-2024:2447
Fixed in:1:3.0.7-27.el9RHSA-2024:2447
Fixed in:1:3.0.7-27.el9RHSA-2024:2447
Fixed in:1:3.0.7-27.el9RHSA-2024:2447
Fixed in:1:3.0.7-27.el9RHSA-2024:2447
openssl-develRocky
Fixed in:1:3.0.7-27.el9RHSA-2024:2447
Fixed in:1:3.0.7-27.el9RHSA-2024:2447
Fixed in:1:3.0.7-27.el9RHSA-2024:2447
Fixed in:1:3.0.7-27.el9RHSA-2024:2447
Fixed in:1:3.0.7-27.el9RHSA-2024:2447
openssl-develRed Hat / RHEL
Fixed in:1:3.0.7-27.el9RHSA-2024:2447
Fixed in:1:3.0.7-27.el9RHSA-2024:2447
Fixed in:1:3.0.7-27.el9RHSA-2024:2447
Fixed in:1:3.0.7-27.el9RHSA-2024:2447
Fixed in:1:3.0.7-27.el9RHSA-2024:2447
openssl-fips-providerRocky
Fixed in:0:3.0.7-2.el9RHSA-2024:2447
Fixed in:0:3.0.7-2.el9RHSA-2024:2447
Fixed in:0:3.0.7-2.el9RHSA-2024:2447
Fixed in:0:3.0.7-2.el9RHSA-2024:2447
Fixed in:0:3.0.7-2.el9RHSA-2024:2447
Fixed in:0:3.0.7-2.el9RHSA-2024:2447
openssl-fips-providerRed Hat / RHEL
Fixed in:0:3.0.7-2.el9RHSA-2024:2447
Fixed in:0:3.0.7-2.el9RHSA-2024:2447
Fixed in:0:3.0.7-2.el9RHSA-2024:2447
Fixed in:0:3.0.7-2.el9RHSA-2024:2447
Fixed in:0:3.0.7-2.el9RHSA-2024:2447
Fixed in:0:3.0.7-2.el9RHSA-2024:2447
openssl-fips-provider-debuginfoRed Hat / RHEL
Fixed in:0:3.0.7-2.el9RHSA-2024:2447
Fixed in:0:3.0.7-2.el9RHSA-2024:2447
Fixed in:0:3.0.7-2.el9RHSA-2024:2447
Fixed in:0:3.0.7-2.el9RHSA-2024:2447
Fixed in:0:3.0.7-2.el9RHSA-2024:2447
openssl-fips-provider-debuginfoRocky
Fixed in:0:3.0.7-2.el9RHSA-2024:2447
Fixed in:0:3.0.7-2.el9RHSA-2024:2447
Fixed in:0:3.0.7-2.el9RHSA-2024:2447
Fixed in:0:3.0.7-2.el9RHSA-2024:2447
Fixed in:0:3.0.7-2.el9RHSA-2024:2447
openssl-fips-provider-debugsourceRocky
Fixed in:0:3.0.7-2.el9RHSA-2024:2447
Fixed in:0:3.0.7-2.el9RHSA-2024:2447
Fixed in:0:3.0.7-2.el9RHSA-2024:2447
Fixed in:0:3.0.7-2.el9RHSA-2024:2447
Fixed in:0:3.0.7-2.el9RHSA-2024:2447
openssl-fips-provider-debugsourceRed Hat / RHEL
Fixed in:0:3.0.7-2.el9RHSA-2024:2447
Fixed in:0:3.0.7-2.el9RHSA-2024:2447
Fixed in:0:3.0.7-2.el9RHSA-2024:2447
Fixed in:0:3.0.7-2.el9RHSA-2024:2447
Fixed in:0:3.0.7-2.el9RHSA-2024:2447
openssl-libsRed Hat / RHEL
Fixed in:1:3.0.7-27.el9RHSA-2024:2447
Fixed in:1:3.0.7-27.el9RHSA-2024:2447
Fixed in:1:3.0.7-27.el9RHSA-2024:2447
Fixed in:1:3.0.7-27.el9RHSA-2024:2447
Fixed in:1:3.0.7-27.el9RHSA-2024:2447
openssl-libsRocky
Fixed in:1:3.0.7-27.el9RHSA-2024:2447
Fixed in:1:3.0.7-27.el9RHSA-2024:2447
Fixed in:1:3.0.7-27.el9RHSA-2024:2447
Fixed in:1:3.0.7-27.el9RHSA-2024:2447
Fixed in:1:3.0.7-27.el9RHSA-2024:2447
openssl-libs-debuginfoRocky
Fixed in:1:3.0.7-27.el9RHSA-2024:2447
Fixed in:1:3.0.7-27.el9RHSA-2024:2447
Fixed in:1:3.0.7-27.el9RHSA-2024:2447
Fixed in:1:3.0.7-27.el9RHSA-2024:2447
Fixed in:1:3.0.7-27.el9RHSA-2024:2447
openssl-libs-debuginfoRed Hat / RHEL
Fixed in:1:3.0.7-27.el9RHSA-2024:2447
Fixed in:1:3.0.7-27.el9RHSA-2024:2447
Fixed in:1:3.0.7-27.el9RHSA-2024:2447
Fixed in:1:3.0.7-27.el9RHSA-2024:2447
Fixed in:1:3.0.7-27.el9RHSA-2024:2447
openssl-perlRocky
Fixed in:1:3.0.7-27.el9RHSA-2024:2447
Fixed in:1:3.0.7-27.el9RHSA-2024:2447
Fixed in:1:3.0.7-27.el9RHSA-2024:2447
Fixed in:1:3.0.7-27.el9RHSA-2024:2447
openssl-perlRed Hat / RHEL
Fixed in:1:3.0.7-27.el9RHSA-2024:2447
Fixed in:1:3.0.7-27.el9RHSA-2024:2447
Fixed in:1:3.0.7-27.el9RHSA-2024:2447
Fixed in:1:3.0.7-27.el9RHSA-2024:2447
edk2Ubuntu
Fixed in:2022.02-3ubuntu0.22.04.4USN-7894-1
Fixed in:2024.02-2ubuntu0.6USN-7894-1
libssl1.0.0Ubuntu
Fixed in:1.0.1f-1ubuntu2.27+esm10USN-7018-1
Fixed in:1.0.2g-1ubuntu4.20+esm11USN-6632-1
Fixed in:1.0.2n-1ubuntu5.13+esm1USN-6709-1
libssl1.1Ubuntu
Fixed in:1.1.1-1ubuntu2.1~18.04.23+esm4USN-6632-1
Fixed in:1.1.1f-1ubuntu2.21USN-6622-1
libssl3Ubuntu
Fixed in:3.0.2-0ubuntu1.14USN-6622-1
Fixed in:3.0.10-1ubuntu2.2USN-6622-1
opensslUbuntu
Fixed in:1.0.1f-1ubuntu2.27+esm10USN-7018-1
Fixed in:1.0.2g-1ubuntu4.20+esm11USN-6632-1
Fixed in:1.1.1-1ubuntu2.1~18.04.23+esm4USN-6632-1
Fixed in:1.1.1f-1ubuntu2.21USN-6622-1
Fixed in:3.0.2-0ubuntu1.14USN-6622-1
Fixed in:3.0.10-1ubuntu2.2USN-6622-1
openssl1.0Ubuntu
Fixed in:1.0.2n-1ubuntu5.13+esm1USN-6709-1
ovmfUbuntu
Fixed in:2022.02-3ubuntu0.22.04.4USN-7894-1
Fixed in:2024.02-2ubuntu0.6USN-7894-1
ovmf-ia32Ubuntu
Fixed in:2022.02-3ubuntu0.22.04.4USN-7894-1
Fixed in:2024.02-2ubuntu0.6USN-7894-1
qemu-efiUbuntu
Fixed in:2022.02-3ubuntu0.22.04.4USN-7894-1
qemu-efi-aarch64Ubuntu
Fixed in:2022.02-3ubuntu0.22.04.4USN-7894-1
Fixed in:2024.02-2ubuntu0.6USN-7894-1
qemu-efi-armUbuntu
Fixed in:2022.02-3ubuntu0.22.04.4USN-7894-1
Fixed in:2024.02-2ubuntu0.6USN-7894-1
qemu-efi-riscv64Ubuntu
Fixed in:2024.02-2ubuntu0.6USN-7894-1

Remediation is compiled from vendor and distribution security advisories. Always confirm against the linked source for your exact version and platform.

CVSS v3 Vector

Exploitability

Attack VectorLocal
Attack ComplexityLow
Privileges RequiredNone
User InteractionRequired
ScopeUnchanged

Impact

ConfidentialityNone
IntegrityNone
AvailabilityHigh

CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H

Exploit Intelligence

3.17%probability of exploitation in 30 days
86thpercentile

Elevated risk: more likely to be exploited than 86% of all known CVEs.

References

Related Vulnerabilities

Other CWE-476 (NULL Pointer Dereference) vulnerabilities, ordered by exploit likelihood. View all

CVESeverityCVSSEPSSExploitedFix
CVE-2023-21758High7.592%-Fix
CVE-2023-21547High7.588%-Fix
CVE-2014-3470Medium4.386%-Fix
CVE-2021-44224High8.282%-Fix
CVE-2016-0742High7.582%-Fix
CVE-2009-1386Medium5.080%-Fix
Embed a live status badge for CVE-2024-0727
CVE-2024-0727 severity badge

Markdown

[![CVE-2024-0727](https://tridentstack.com/cve/badge/CVE-2024-0727.svg)](https://tridentstack.com/cve/CVE-2024-0727)

HTML

<a href="https://tridentstack.com/cve/CVE-2024-0727"><img src="https://tridentstack.com/cve/badge/CVE-2024-0727.svg" alt="CVE-2024-0727"></a>

Find and fix vulnerabilities across your fleet

TridentStack Control continuously scans your Windows, macOS, and Linux fleet for known vulnerabilities, prioritizes them by severity and active exploitation, and patches them automatically.

Start free

This product uses NVD data but is not endorsed or certified by the NVD. EPSS scores courtesy of FIRST.org (https://www.first.org/epss). Source: CISA KEV Catalog. Data as of 2026-05-12.