CVE-2021-3601
Unknown
Last modified
CVE-2021-3601 is a vulnerability of currently unknown severity. Rejected reason: DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: none.
Description
Rejected reason: DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: none. Reason: This candidate was withdrawn by its CNA. OpenSSL does not class this issue as a security vulnerability. The trusted CA store should not contain anything that the user does not trust to issue other certificates. Notes: https://github.com/openssl/openssl/issues/5236#issuecomment-119646061
Timeline
- Published
- Last Modified
- Status
- Rejected
Frequently Asked Questions
What is CVE-2021-3601?
Rejected reason: DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: none. Reason: This candidate was withdrawn by its CNA. OpenSSL does not class this issue as a security vulnerability. The trusted CA store should not contain anything that the user does not trust to issue other certificates. Notes: https://github.com/openssl/openssl/issues/5236#issuecomment-119646061
How severe is CVE-2021-3601?
Severity scoring for CVE-2021-3601 is pending analysis.
How do I fix CVE-2021-3601?
Check the vendor references and advisories linked above for patched versions and mitigation guidance. You can also run a Strix scan to test if your systems are affected.
Are you affected by CVE-2021-3601?
Run a free Strix scan to check your systems for this vulnerability.
Scan your code nowSource: NVD / NIST