CVE-2024-23775 | mbed TLS up to 2.28.6/3.5.1 mbedtls_x509_set_extension integer overflow

Posted by Angelo Barbosa | Jan 30, 2024 | CVE

A vulnerability has been found in mbed TLS up to 2.28.6/3.5.1 and classified as problematic. This vulnerability affects the function mbedtls_x509_set_extension. The manipulation leads to integer overflow.

This vulnerability was named CVE-2024-23775. The attack can be initiated remotely. There is no exploit available.

It is recommended to upgrade the affected component.

CVE-2024-23775 | mbed TLS up to 2.28.6/3.5.1 mbedtls_x509_set_extension integer overflow

Related Posts

CVE-2023-6336 | HYPR Workforce Access up to 8.6 on macOS link following

CVE-2024-46635 | INROAD prior 20240206 API Endpoint GetCurrentUserInfo UserNameOrPhoneNumber information disclosure

CVE-2024-47240 | Dell Secure Connect Gateway 5.24.00.14 default permission (dsa-2024-407)

CVE-2024-9292 | Bridge Core Plugin up to 3.2.0 on WordPress Shortcode cross site scripting