CVE-2024-28960 | mbed TLS up to 2.28.7/3.5.x PSA Crypto API Privilege Escalation

Inserito da Angelo Barbosa | Mar 29, 2024 | CVE

A vulnerability has been found in mbed TLS up to 2.28.7/3.5.x and classified as problematic. This vulnerability affects unknown code of the component PSA Crypto API. The manipulation leads to Privilege Escalation.

This vulnerability was named CVE-2024-28960. The attack can only be initiated within the local network. There is no exploit available.

It is recommended to upgrade the affected component.

CVE-2024-28960 | mbed TLS up to 2.28.7/3.5.x PSA Crypto API Privilege Escalation

Post correlati

CVE-2024-51258 | DrayTek Vigor 3900 1.5.1.3 mainfunction.cgi doSSLTunnel command injection

CVE-2023-3726 | OCSInventory 2.12.0 Email Template cross site scripting

CVE-2024-8180 | GitLab Community Edition/Enterprise Edition up to 17.3.6/17.4.3/17.5.1 cross site scripting (Issue 480720)

CVE-2023-28687 | perfectwpthemes Glaze Blog Lite on WordPress cross site scripting