We refer to the concept of drago-96 and then rewrite a PoC based on the P12 and PEM format. You can use it to verify the CVE-2022-0778 vulns, i.e., a dangerous SSL certificate (without any private password, leave it empty). If the device is affected, it may cause the CPU of the process to be 100% or reboot.
- https://github.com/drago-96/CVE-2022-0778
- https://twitter.com/taviso
- https://github.com/wllm-rbnt/asn1template
4/21/2022
- YU-HSIANG HUANG
- YUNG-HAO TSENG