CVE-2024-23775 | mbed TLS up to 2.28.6/3.5.1 mbedtls_x509_set_extension integer overflow

Posted by Angelo Barbosa | Jan 30, 2024 | CVE

A vulnerability has been found in mbed TLS up to 2.28.6/3.5.1 and classified as problematic. This vulnerability affects the function mbedtls_x509_set_extension. The manipulation leads to integer overflow.

This vulnerability was named CVE-2024-23775. The attack can be initiated remotely. There is no exploit available.

It is recommended to upgrade the affected component.

CVE-2024-23775 | mbed TLS up to 2.28.6/3.5.1 mbedtls_x509_set_extension integer overflow

Related Posts

CVE-2024-25617 | Squid Web Proxy up to 6.4 HTTP Header Parser resource consumption (GHSA-h5x6-w8mv-xfpr)

CVE-2023-50858 | Bill Minozzi Anti Hacker Plugin up to 4.34 on WordPress cross-site request forgery

CVE-2024-22913 | SWFTools 0.9.2/5.c lex.swf5.c swf5lex heap-based overflow (Issue 213)

CVE-2024-23601 | AutomationDirect Productivity 3000 P3-550E 1.2.10.9 scan_lib.bin data authenticity (icsa-24-144-01)