CVE-2022-40735

Name of the Vulnerable Software and Affected Versions No specific software or versions are mentioned, so the information cannot be consolidated into a concise form. The affected software is (affected versions not specified).

Description The issue allows remote attackers to trigger expensive server-side calculations using long exponents in the Diffie-Hellman Key Agreement Protocol. This can lead to asymmetric resource consumption. The attack can be more disruptive when a client sends arbitrary numbers that are not DH public keys, or when a server is forced to select its largest supported key size. This issue can affect protocols such as TLS, SSH, and IKE.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.