The SentinelOne Annual Threat Report - A Defenders Guide from the FrontlinesThe SentinelOne Annual Threat ReportGet the Report
Experiencing a Breach?Blog
Get StartedContact Us
SentinelOne
  • Platform
    Platform Overview
    • Singularity Platform
      Welcome to Integrated Enterprise Security
    • AI for Security
      Leading the Way in AI-Powered Security Solutions
    • Securing AI
      Accelerate AI Adoption with Secure AI Tools, Apps, and Agents.
    • How It Works
      The Singularity XDR Difference
    • Singularity Marketplace
      One-Click Integrations to Unlock the Power of XDR
    • Pricing & Packaging
      Comparisons and Guidance at a Glance
    Data & AI
    • Purple AI
      Accelerate SecOps with Generative AI
    • Singularity Hyperautomation
      Easily Automate Security Processes
    • AI-SIEM
      The AI SIEM for the Autonomous SOC
    • Singularity Data Lake
      AI-Powered, Unified Data Lake
    • Singularity Data Lake for Log Analytics
      Seamlessly Ingest Data from On-Prem, Cloud or Hybrid Environments
    Endpoint Security
    • Singularity Endpoint
      Autonomous Prevention, Detection, and Response
    • Singularity XDR
      Native & Open Protection, Detection, and Response
    • Singularity RemoteOps Forensics
      Orchestrate Forensics at Scale
    • Singularity Threat Intelligence
      Comprehensive Adversary Intelligence
    • Singularity Vulnerability Management
      Application & OS Vulnerability Management
    • Singularity Identity
      Identity Threat Detection and Response
    Cloud Security
    • Singularity Cloud Security
      Block Attacks with an AI-Powered CNAPP
    • Singularity Cloud Native Security
      Secure Cloud and Development Resources
    • Singularity Cloud Workload Security
      Real-Time Cloud Workload Protection Platform
    • Singularity Cloud Data Security
      AI-Powered Threat Detection for Cloud Storage
    • Singularity Cloud Security Posture Management
      Detect and Remediate Cloud Misconfigurations
    Securing AI
    • Prompt Security
      Secure AI Tools Across Your Enterprise
  • Why SentinelOne?
    Why SentinelOne?
    • Why SentinelOne?
      Cybersecurity Built for What’s Next
    • Our Customers
      Trusted by the World’s Leading Enterprises
    • Industry Recognition
      Tested and Proven by the Experts
    • About Us
      The Industry Leader in Autonomous Cybersecurity
    Compare SentinelOne
    • Arctic Wolf
    • Broadcom
    • CrowdStrike
    • Cybereason
    • Microsoft
    • Palo Alto Networks
    • Sophos
    • Splunk
    • Trellix
    • Trend Micro
    • Wiz
    Verticals
    • Energy
    • Federal Government
    • Finance
    • Healthcare
    • Higher Education
    • K-12 Education
    • Manufacturing
    • Retail
    • State and Local Government
  • Services
    Managed Services
    • Managed Services Overview
      Wayfinder Threat Detection & Response
    • Threat Hunting
      World-Class Expertise and Threat Intelligence
    • Managed Detection & Response
      24/7/365 Expert MDR Across Your Entire Environment
    • Incident Readiness & Response
      DFIR, Breach Readiness, & Compromise Assessments
    Support, Deployment, & Health
    • Technical Account Management
      Customer Success with Personalized Service
    • SentinelOne GO
      Guided Onboarding & Deployment Advisory
    • SentinelOne University
      Live and On-Demand Training
    • Services Overview
      Comprehensive Solutions for Seamless Security Operations
    • SentinelOne Community
      Community Login
  • Partners
    Our Network
    • MSSP Partners
      Succeed Faster with SentinelOne
    • Singularity Marketplace
      Extend the Power of S1 Technology
    • Cyber Risk Partners
      Enlist Pro Response and Advisory Teams
    • Technology Alliances
      Integrated, Enterprise-Scale Solutions
    • SentinelOne for AWS
      Hosted in AWS Regions Around the World
    • Channel Partners
      Deliver the Right Solutions, Together
    • SentinelOne for Google Cloud
      Unified, Autonomous Security Giving Defenders the Advantage at Global Scale
    • Partner Locator
      Your Go-to Source for Our Top Partners in Your Region
    Partner Portal→
  • Resources
    Resource Center
    • Case Studies
    • Data Sheets
    • eBooks
    • Reports
    • Videos
    • Webinars
    • Whitepapers
    • Events
    View All Resources→
    Blog
    • Feature Spotlight
    • For CISO/CIO
    • From the Front Lines
    • Identity
    • Cloud
    • macOS
    • SentinelOne Blog
    Blog→
    Tech Resources
    • SentinelLABS
    • Ransomware Anthology
    • Cybersecurity 101
  • About
    About SentinelOne
    • About SentinelOne
      The Industry Leader in Cybersecurity
    • Investor Relations
      Financial Information & Events
    • SentinelLABS
      Threat Research for the Modern Threat Hunter
    • Careers
      The Latest Job Opportunities
    • Press & News
      Company Announcements
    • Cybersecurity Blog
      The Latest Cybersecurity Threats, News, & More
    • FAQ
      Get Answers to Our Most Frequently Asked Questions
    • DataSet
      The Live Data Platform
    • S Foundation
      Securing a Safer Future for All
    • S Ventures
      Investing in the Next Generation of Security, Data and AI
  • Pricing
Get StartedContact Us
CVE Vulnerability Database
Vulnerability Database/CVE-2023-3446

CVE-2023-3446: OpenSSL DH Parameter Check DoS Vulnerability

CVE-2023-3446 is a denial of service vulnerability in OpenSSL affecting DH_check() and related functions when processing excessively long DH parameters. This article covers the technical details, affected versions, and mitigation.

Published: February 11, 2026

CVE-2023-3446 Overview

CVE-2023-3446 is an Algorithmic Complexity Attack vulnerability in OpenSSL that affects the Diffie-Hellman (DH) key parameter validation functions. Applications using DH_check(), DH_check_ex(), or EVP_PKEY_param_check() to validate DH keys or parameters may experience significant delays when processing excessively long modulus values. When keys or parameters are obtained from an untrusted source, this vulnerability can be exploited to cause a Denial of Service condition.

The vulnerability exists because while OpenSSL typically refuses to use modulus values over 10,000 bits in length, the DH_check() function continues to perform additional checks using the oversized modulus value even after determining it is too large. This creates an opportunity for attackers to submit maliciously crafted DH parameters that consume excessive CPU resources.

Critical Impact

Applications accepting DH parameters from untrusted sources are vulnerable to Denial of Service attacks through excessive CPU consumption during parameter validation.

Affected Products

  • OpenSSL 1.0.2
  • OpenSSL 1.1.1
  • OpenSSL 3.0.0
  • OpenSSL 3.1.0
  • OpenSSL 3.1.1

Discovery Timeline

  • 2023-07-19 - CVE-2023-3446 published to NVD
  • 2025-04-23 - Last updated in NVD database

Technical Details for CVE-2023-3446

Vulnerability Analysis

The vulnerability resides in OpenSSL's DH_check() function, which performs comprehensive validation of Diffie-Hellman parameters. One critical check confirms that the modulus ('p' parameter) does not exceed acceptable size limits—OpenSSL typically rejects modulus values over 10,000 bits. However, the function's design flaw allows subsequent validation steps to execute using the oversized modulus value, even after the size check has failed.

This creates an algorithmic complexity issue where an attacker can craft DH parameters with an extremely large modulus that triggers computationally expensive operations. The DH_check() function is also invoked by DH_check_ex() and EVP_PKEY_param_check(), extending the attack surface to applications using these APIs. Additionally, the dhparam and pkeyparam command line utilities are vulnerable when invoked with the -check option.

Importantly, the OpenSSL SSL/TLS implementation is not affected by this issue, and the OpenSSL 3.0 and 3.1 FIPS providers remain unaffected.

Root Cause

The root cause is an improper ordering of validation checks in the DH_check() function. While the function correctly identifies oversized modulus values, it fails to short-circuit remaining checks that depend on the modulus parameter. This allows computationally expensive operations to proceed with maliciously large values, violating the principle of fail-fast validation.

The weakness is classified under CWE-606 (Unchecked Input for Loop Condition) and CWE-1333 (Inefficient Regular Expression Complexity), both relating to resource consumption through uncontrolled algorithmic complexity.

Attack Vector

The attack requires network access to an application that accepts DH parameters from external sources and validates them using the affected OpenSSL functions. An attacker can exploit this by submitting crafted DH parameters containing an excessively large modulus value.

The attack mechanism involves constructing DH parameters where the 'p' (modulus) value exceeds normal bounds but remains syntactically valid. When these parameters are passed to DH_check(), the function attempts to perform primality testing and other computationally intensive operations on the oversized value, consuming CPU resources and potentially causing the application to become unresponsive.

Detection Methods for CVE-2023-3446

Indicators of Compromise

  • Unusual CPU utilization spikes in processes handling cryptographic operations or TLS connections
  • Application unresponsiveness or timeouts during DH parameter processing
  • Log entries indicating excessive processing time for certificate or key validation operations
  • Memory pressure from applications handling abnormally large cryptographic parameters

Detection Strategies

  • Monitor process CPU utilization for applications using OpenSSL's DH validation functions
  • Implement application-level logging to track DH parameter validation duration and flag anomalous processing times
  • Deploy network intrusion detection rules to identify malformed or oversized DH parameters in TLS handshakes
  • Review application logs for errors or timeouts related to DH_check(), DH_check_ex(), or EVP_PKEY_param_check() function calls

Monitoring Recommendations

  • Configure resource monitoring alerts for sustained high CPU usage in web servers, VPN gateways, and other services performing DH key exchange
  • Implement timeout thresholds for cryptographic parameter validation operations
  • Monitor network traffic for unusual patterns in key exchange phases that may indicate exploitation attempts

How to Mitigate CVE-2023-3446

Immediate Actions Required

  • Update OpenSSL to the latest patched version for your release branch immediately
  • Audit applications to identify usage of DH_check(), DH_check_ex(), and EVP_PKEY_param_check() functions
  • Review systems using the dhparam or pkeyparam command line tools with the -check option
  • Implement input validation to reject DH parameters with excessively large modulus values before calling OpenSSL validation functions

Patch Information

OpenSSL has released security patches to address this vulnerability across multiple branches. The patches ensure that oversized modulus values are properly rejected before computationally expensive checks are performed.

Patched commits are available for review:

  • OpenSSL Security Advisory July 2023
  • OpenSSL Commit for 3.1 branch
  • OpenSSL Commit for 3.0 branch
  • OpenSSL Commit for 1.1.1 branch
  • OpenSSL Commit for 1.0.2 branch

Linux distribution-specific advisories are available from Debian LTS, Gentoo GLSA-202402-08, and NetApp Security Advisory.

Workarounds

  • Implement application-level size checks on DH parameters before passing them to OpenSSL validation functions
  • Configure network-level filtering to reject abnormally large cryptographic parameters
  • Consider switching to ECDH (Elliptic Curve Diffie-Hellman) where feasible, as it is not affected by this vulnerability
  • Apply resource limits (ulimits, cgroups) to constrain CPU consumption by processes handling cryptographic operations
bash
# Check OpenSSL version to verify patch status
openssl version -a

# Verify installed OpenSSL package version on Debian/Ubuntu
dpkg -l | grep openssl

# Verify installed OpenSSL package version on RHEL/CentOS
rpm -qa | grep openssl

Disclaimer: This content was generated using AI. While we strive for accuracy, please verify critical information with official sources.

  • Vulnerability Details
  • TypeDOS
  • Vendor/TechOpenssl
  • SeverityMEDIUM
  • CVSS Score5.3
  • EPSS Probability0.94%
  • Known ExploitedNo
  • CVSS Vector
  • CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L
  • Impact Assessment
  • ConfidentialityLow
  • IntegrityNone
  • AvailabilityLow
  • CWE References
  • CWE-606
  • CWE-1333
  • Technical References
  • Openwall OSS-Security Discussion 19 July 2023 - 4
  • Openwall OSS-Security Discussion 19 July 2023 - 5
  • Openwall OSS-Security Discussion 19 July 2023 - 6
  • Openwall OSS-Security Discussion 31 July 2023 - 1
  • Openwall OSS-Security Discussion 16 May 2024 - 1
  • Debian LTS Announcement August 2023
  • Gentoo GLSA 202402-08
  • NetApp Security Advisory ntap-20230803-0011
  • Vendor Resources
  • OpenSSL Commit Diff 1
  • OpenSSL Commit Diff 2
  • OpenSSL Commit Diff 3
  • OpenSSL Commit Diff 4
  • OpenSSL Security Advisory July 2023
  • Related CVEs
  • CVE-2026-28389: OpenSSL CMS DoS Vulnerability
  • CVE-2026-28388: OpenSSL Delta CRL DoS Vulnerability
  • CVE-2026-28386: OpenSSL AES-CFB128 DoS Vulnerability
  • CVE-2026-28390: OpenSSL CMS DoS Vulnerability
Default Legacy - Prefooter | Experience the World’s Most Advanced Cybersecurity Platform

Experience the World’s Most Advanced Cybersecurity Platform

See how our intelligent, autonomous cybersecurity platform can protect your organization now and into the future.

Try SentinelOne
  • Get Started
  • Get a Demo
  • Product Tour
  • Why SentinelOne
  • Pricing & Packaging
  • FAQ
  • Contact
  • Contact Us
  • Customer Support
  • SentinelOne Status
  • Language
  • Platform
  • Singularity Platform
  • Singularity Endpoint
  • Singularity Cloud
  • Singularity AI-SIEM
  • Singularity Identity
  • Singularity Marketplace
  • Purple AI
  • Services
  • Wayfinder TDR
  • SentinelOne GO
  • Technical Account Management
  • Support Services
  • Verticals
  • Energy
  • Federal Government
  • Finance
  • Healthcare
  • Higher Education
  • K-12 Education
  • Manufacturing
  • Retail
  • State and Local Government
  • Cybersecurity for SMB
  • Resources
  • Blog
  • Labs
  • Case Studies
  • Videos
  • Product Tours
  • Events
  • Cybersecurity 101
  • eBooks
  • Webinars
  • Whitepapers
  • Press
  • News
  • Ransomware Anthology
  • Company
  • About Us
  • Our Customers
  • Careers
  • Partners
  • Legal & Compliance
  • Security & Compliance
  • Investor Relations
  • S Foundation
  • S Ventures

©2026 SentinelOne, All Rights Reserved.

Privacy Notice Terms of Use

English