Name of the Vulnerable Software and Affected Versions rustls-webpki versions prior to 0.3.7

Description The issue arises during startup when an attacker can intercept traffic to and from NTS key exchange servers, triggering an expensive key validation process due to a vulnerability in webpki. This can lead to excessive CPU usage on startup for clients configured to use NTS.

Recommendations For versions prior to 0.3.7, upgrade to version 0.3.7 to resolve the issue. As a temporary workaround, consider restricting access to NTS key exchange servers to minimize the risk of exploitation.