CVE-2024-45159 | mbed TLS 3.6.0 TLS Client Authentication mbedtls_ssl_get_verify_result return value

Posted by Angelo Barbosa | Sep 5, 2024 | CVE

A vulnerability classified as problematic has been found in mbed TLS 3.6.0. This affects the function mbedtls_ssl_get_verify_result of the component TLS Client Authentication Handler. The manipulation leads to unchecked return value.

This vulnerability is uniquely identified as CVE-2024-45159. It is possible to initiate the attack remotely. There is no exploit available.

It is recommended to upgrade the affected component.

CVE-2024-45159 | mbed TLS 3.6.0 TLS Client Authentication mbedtls_ssl_get_verify_result return value

Related Posts

CVE-2024-4942 | Custom Dash Plugin up to 1.0.2 on WordPress cross site scripting

CVE-2024-0363 | PHPGurukul Hospital Management System 1.0 admin/patient-search.php searchdata sql injection

CVE-2024-25189 | libjwt 1.15.3 strcmp timing discrepancy

CVE-2023-47144 | IBM Tivoli Application Dependency Discovery Manager up to 7.3.0.10 Web UI cross site scripting (XFDB-270271)