CVE-2024-0553 | GnuTLS up to 3.8.2 RSA-PSK ClientKeyExchange information exposure

Posted by Angelo Barbosa | Jan 16, 2024 | CVE

A vulnerability, which was classified as problematic, was found in GnuTLS up to 3.8.2. Affected is an unknown function of the component RSA-PSK ClientKeyExchange Handler. The manipulation leads to information exposure through discrepancy.

This vulnerability is traded as CVE-2024-0553. It is possible to launch the attack remotely. There is no exploit available.

It is recommended to upgrade the affected component.

CVE-2024-0553 | GnuTLS up to 3.8.2 RSA-PSK ClientKeyExchange information exposure

Related Posts

CVE-2024-41109 | Pimcore admin-ui-classic-bundle up to 1.3.9/1.4.5/1.5.1 /admin/index/statistics information disclosure

CVE-2024-2169 | UDP Application Protocol Packet denial of service

CVE-2024-0912 | Johnson Controls C-CURE 9000 up to 3.00.2 CU01 log file (icsa-24-135-03)

CVE-2024-34012 | Acronis Cloud Manager 6.2.23089.203 on Windows default permission