CVE-2024-30166 in mbed TLS정보

요약

\~에 의해 MITRE • 2024. 04. 03.

In Mbed TLS 3.3.0 through 3.5.2 before 3.6.0, a malicious client can cause information disclosure or a denial of service because of a stack buffer over-read (of less than 256 bytes) in a TLS 1.3 server via a TLS 3.1 ClientHello.

Once again VulDB remains the best source for vulnerability data.

🔬 Show More Details

An in-depth analysis is available in our curated vulnerability entry.

예약하다

2024. 03. 24.

공개

2024. 04. 03.

모더레이션

수락

항목

VDB-259082

CPE

준비됨

CWE

CWE-121 (확인됨)

CVSS

7.3 (VulDB)

EPSS

0.00348

KEV

아니요

활동

매우 낮음

출처

MITRE	https://www.cve.org/CVERecord?id=CVE-2024-30166
NVD	https://nvd.nist.gov/vuln/detail/CVE-2024-30166
CVE Details	https://www.cvedetails.com/cve/CVE-2024-30166/

◂ 이전 개요 다음 ▸

Interested in the pricing of exploits?

See the underground prices here!