CVE-2024-34454

Published: May 26, 2024

Modified: Feb 13, 2025

PUBLISHED

Description

Nintendo Wii U OS 5.5.5 allows man-in-the-middle attackers to forge SSL certificates as though they came from a Root CA, because there is a secondary verification mechanism that only checks whether a CA is known and ignores the CA details and signature (and because * is accepted as a Common Name).

Vendor	Product	Versions
n/a	n/a	affected `n/a`

References

https://github.com/PretendoNetwork/SSSL

https://github.com/PretendoNetwork/SSSL-DNS

Security Training

Train your team to recognize and prevent security threats with our comprehensive security awareness program.

Start Training

Vulnerability Scanning

Discover vulnerabilities in your applications and infrastructure before attackers do.

Scan Now

CVE-2024-34454

Description

Affected Products

References