CVE-2023-24609 | Matrix SSL/Rambus TLS Toolkit Client Hello Pre-Shared Key Extension Parser tls13VerifyBinder/tls13TranscriptHashUpdate integer overflow

Inserito da Angelo Barbosa | Dic 22, 2023 | CVE

A vulnerability has been found in Matrix SSL and Rambus TLS Toolkit and classified as problematic. Affected by this vulnerability is the function tls13VerifyBinder/tls13TranscriptHashUpdate of the component Client Hello Pre-Shared Key Extension Parser. The manipulation leads to integer overflow.

This vulnerability is known as CVE-2023-24609. Access to the local network is required for this attack. There is no exploit available.

CVE-2023-24609 | Matrix SSL/Rambus TLS Toolkit Client Hello Pre-Shared Key Extension Parser tls13VerifyBinder/tls13TranscriptHashUpdate integer overflow

Post correlati

CVE-2023-41252 | Intel QAT Software Drivers prior QAT1.7-W-1.11.0 on Windows denial of service (intel-sa-01000)

CVE-2024-10082 | Ericsson CodeChecker up to 6.24.1 authentication bypass (GHSA-fpm5-2wcj-vfr7)

CVE-2024-29833 | 10Web PhotoGallery Plugin up to 1.8.21 on WordPress SVG File cross site scripting

CVE-2024-10195 | Tecno 4G Portable WiFi TR118 V008-20220830 SMS Check goform_get_cmd_process order_by sql injection