CVE-2024-45159 | mbed TLS 3.6.0 TLS Client Authentication mbedtls_ssl_get_verify_result return value

Posted by Angelo Barbosa | Sep 5, 2024 | CVE

A vulnerability classified as problematic has been found in mbed TLS 3.6.0. This affects the function mbedtls_ssl_get_verify_result of the component TLS Client Authentication Handler. The manipulation leads to unchecked return value.

This vulnerability is uniquely identified as CVE-2024-45159. It is possible to initiate the attack remotely. There is no exploit available.

It is recommended to upgrade the affected component.

CVE-2024-45159 | mbed TLS 3.6.0 TLS Client Authentication mbedtls_ssl_get_verify_result return value

Related Posts

CVE-2024-1034 | openBI up to 1.0.8 File.php uploadFile unrestricted upload

CVE-2024-36361 | Pug up to 3.0.2 Template Compiler cross site scripting

CVE-2024-28387 | axonaut up to 3.1.23 log.txt information disclosure

CVE-2024-39934 | Robotmk up to 2.0.0 Local Privilege Escalation