CVE-2024-2881 | wolfSSL up to 5.6.6 on Linux wolfCrypt ed25519.c in wc_ed25519_sign_msg Rowhammer improper restriction of software interfaces to hardware features

Posted by Angelo Barbosa | Aug 30, 2024 | CVE

A vulnerability has been found in wolfSSL up to 5.6.6 on Linux and classified as critical. Affected by this vulnerability is the function in wc_ed25519_sign_msg of the file wolfssl/wolfcrypt/src/ed25519.c of the component wolfCrypt. The manipulation leads to improper restriction of software interfaces to hardware features.

This vulnerability is known as CVE-2024-2881. The attack can only be initiated within the local network. There is no exploit available.

It is recommended to upgrade the affected component.

CVE-2024-2881 | wolfSSL up to 5.6.6 on Linux wolfCrypt ed25519.c in wc_ed25519_sign_msg Rowhammer improper restriction of software interfaces to hardware features

Related Posts

CVE-2024-5106 | Campcodes Complete Web-Based School Management System 1.0 student_payment_details3.php index sql injection

CVE-2024-28979 | Dell OpenManage Enterprise up to 4.0.x UI cross site scripting (dsa-2024-202)

CVE-2024-0598 | Kadence Gutenberg Blocks Plugin up to 3.2.17 on WordPress Contact Form Message Settings cross site scripting

CVE-2024-30524 | RedLettuce PDF Viewer for Elementor Plugin up to 2.9.3 on WordPress cross site scripting