• Online, Self-Paced
Course Description

The OpenSSL infinite loop vulnerability (CVE-2022-0778) is a critical flaw impacting systems running OpenSSL versions 1.0.2, 1.1.1 and 3.0. If exploited, this vulnerability allows adversaries to perform a denial-of-service (DOS) attack. Take our course to exploit this vulnerability in a secure lab environment.

Learning Objectives

After completing this course, you will be able to:
- Define the OpenSSL infinite loop attack, describe its root cause, and communicate its significance to key organizational stakeholders.
- Exploit this vulnerability using publicly available exploit code.
- Execute various mitigation tactics to reduce risk.

Framework Connections

The materials within this course focus on the Knowledge Skills and Abilities (KSAs) identified within the Specialty Areas listed below. Click to view Specialty Area details within the interactive National Cybersecurity Workforce Framework.