Vulnerabilities > Openssl > Openssl > 3.0.8

DATE CVE VULNERABILITY TITLE RISK
2023-03-28 CVE-2023-0466 Improper Certificate Validation vulnerability in Openssl
The function X509_VERIFY_PARAM_add0_policy() is documented to implicitly enable the certificate policy check when doing certificate verification.
network
low complexity
openssl CWE-295
5.3
5.3
2023-03-22 CVE-2023-0464 Improper Certificate Validation vulnerability in Openssl
A security vulnerability has been identified in all supported versions of OpenSSL related to the verification of X.509 certificate chains that include policy constraints.
network
low complexity
openssl CWE-295
7.5
7.5