Vulnerability Description
A certificate with a URI which has a IPv6 address with a zone ID may incorrectly satisfy a URI name constraint that applies to the certificate chain. Certificates containing URIs are not permitted in the web PKI, so this only affects users of private PKIs which make use of URIs.
CVSS Score
MEDIUM
References
- https://go.dev/cl/643099
- https://go.dev/issue/71156
- https://groups.google.com/g/golang-dev/c/CAWXhan3Jww/m/bk9LAa-lCgAJ
- https://groups.google.com/g/golang-dev/c/bG8cv1muIBM/m/G461hA6lCgAJ
- https://pkg.go.dev/vuln/GO-2025-3373
- https://security.netapp.com/advisory/ntap-20250221-0004/
FAQ
What is CVE-2024-45341?
CVE-2024-45341 is a vulnerability with a CVSS score of 6.1 (MEDIUM). A certificate with a URI which has a IPv6 address with a zone ID may incorrectly satisfy a URI name constraint that applies to the certificate chain. Certificates containing URIs are not permitted in ...
How severe is CVE-2024-45341?
CVE-2024-45341 has been rated MEDIUM with a CVSS base score of 6.1/10. Review the CVSS metrics above for detailed severity breakdown.
Is there a patch for CVE-2024-45341?
Check the references section above for vendor advisories and patch information. Review vendor security bulletins for remediation guidance.