CVE-2024-23170 | mbed TLS up to 2.28.6/3.5.1 timing discrepancy

Inserito da Angelo Barbosa | Gen 30, 2024 | CVE

A vulnerability, which was classified as problematic, was found in mbed TLS up to 2.28.6/3.5.1. This affects an unknown part. The manipulation leads to observable timing discrepancy.

This vulnerability is uniquely identified as CVE-2024-23170. It is possible to initiate the attack remotely. There is no exploit available.

It is recommended to upgrade the affected component.

CVE-2024-23170 | mbed TLS up to 2.28.6/3.5.1 timing discrepancy

Post correlati

CVE-2024-1506 | Prime Slider Plugin up to 3.13.1 on WordPress Fiestar Widget cross site scripting

CVE-2024-1797 | WP ULike Plugin up to 4.6.9 on WordPress Shortcode sql injection

CVE-2024-6732 | SourceCodester Student Study Center Desk Management System 1.0 Users.php id sql injection

CVE-2024-25506 | ProcessMaker up to 3.x Cookie pm_sys_sys cross site scripting