Skip to main content

CVE-2023-0215

CVE Details

CVE-2023-0215

Last Update

7/16/2024

NIST CVE Summary

The public API function BIO\_new\_NDEF is a helper function used for streaming ASN.1 data via a BIO. It is primarily used internally to OpenSSL to support the SMIME, CMS and PKCS7 streaming capabilities, but may also be called directly by end user applications.

Our Official Summary

This is a false positive reported by twistlock. We have confirmed this CVE is fixed in the FIPS openSSL version 1.1.1f-1ubuntu2.fips.22 that’s being used in VerteX. You can learn more at https://ubuntu.com/security/CVE-2023-0215.

CVE Severity

7.5

Status

Ongoing