A vulnerability has been found in mbed TLS up to 2.28.6/3.5.1 and classified as problematic. This vulnerability affects the function
mbedtls_x509_set_extension
. The manipulation leads to integer overflow.
This vulnerability was named CVE-2024-23775. The attack can be initiated remotely. There is no exploit available.
It is recommended to upgrade the affected component.