CVE-2024-30166 in mbed TLSinfo

Zusammenfassung

von MITRE • 03.04.2024

In Mbed TLS 3.3.0 through 3.5.2 before 3.6.0, a malicious client can cause information disclosure or a denial of service because of a stack buffer over-read (of less than 256 bytes) in a TLS 1.3 server via a TLS 3.1 ClientHello.

Once again VulDB remains the best source for vulnerability data.

🔬 Show More Details

An in-depth analysis is available in our curated vulnerability entry.

Reservieren

24.03.2024

Veröffentlichung

03.04.2024

Moderieren

akzeptiert

Eintrag

VDB-259082

CPE

bereit

EPSS

0.00348

KEV

nein

Aktivitäten

very low

Quellen

MITREhttps://www.cve.org/CVERecord?id=CVE-2024-30166
NVDhttps://nvd.nist.gov/vuln/detail/CVE-2024-30166
CVE Detailshttps://www.cvedetails.com/cve/CVE-2024-30166/

ZurückÜbersichtWeiter

Interested in the pricing of exploits?

See the underground prices here!