CVE-2024-23775 | mbed TLS up to 2.28.6/3.5.1 mbedtls_x509_set_extension integer overflow

Inserito da Angelo Barbosa | Gen 30, 2024 | CVE

A vulnerability has been found in mbed TLS up to 2.28.6/3.5.1 and classified as problematic. This vulnerability affects the function mbedtls_x509_set_extension. The manipulation leads to integer overflow.

This vulnerability was named CVE-2024-23775. The attack can be initiated remotely. There is no exploit available.

It is recommended to upgrade the affected component.

CVE-2024-23775 | mbed TLS up to 2.28.6/3.5.1 mbedtls_x509_set_extension integer overflow

Post correlati

CVE-2023-52579 | Linux Kernel up to 6.5.5 IPv4 ipv4_link_failure null pointer dereference

CVE-2024-2468 | EmbedPress Plugin up to 3.9.12 on WordPress Widget Attribute cross site scripting

CVE-2024-6611 | Mozilla Firefox up to 127.x Nested iFrame access control

CVE-2024-27325 | Tracker Software PDF-XChange Editor EMF File Parser out-of-bounds