CVE-2023-24609 | Matrix SSL/Rambus TLS Toolkit Client Hello Pre-Shared Key Extension Parser tls13VerifyBinder/tls13TranscriptHashUpdate integer overflow

Inserito da Angelo Barbosa | Dic 22, 2023 | CVE

A vulnerability has been found in Matrix SSL and Rambus TLS Toolkit and classified as problematic. Affected by this vulnerability is the function tls13VerifyBinder/tls13TranscriptHashUpdate of the component Client Hello Pre-Shared Key Extension Parser. The manipulation leads to integer overflow.

This vulnerability is known as CVE-2023-24609. Access to the local network is required for this attack. There is no exploit available.

CVE-2023-24609 | Matrix SSL/Rambus TLS Toolkit Client Hello Pre-Shared Key Extension Parser tls13VerifyBinder/tls13TranscriptHashUpdate integer overflow

Post correlati

CVE-2024-3937 | Playlist for Youtube Plugin up to 1.32 on WordPress Setting cross site scripting

CVE-2024-0705 | Stripe Payment Plugin for WooCommerce Plugin up to 3.7.9 on WordPress sql injection

CVE-2024-27321 | Refuel Autolabel 0.0.8 CSV File neutralization of directives

CVE-2024-36581 | abw badger-database 1.2.1 dist/badger-database.esm prototype pollution