CVE-2024-0901

Опубликовано: 25 мар. 2024

Источник: nvd

CVSS3: 7.5

CVSS3: 9.1

EPSS Низкий

Описание

Remotely executed SEGV and out of bounds read allows malicious packet sender to crash or cause an out of bounds read via sending a malformed packet with the correct length.

Ссылки

https://github.com/wolfSSL/wolfssl/issues/7089
Exploit
Issue Tracking
https://github.com/wolfSSL/wolfssl/pull/7099
Issue Tracking
Patch
https://github.com/wolfSSL/wolfssl/issues/7089
Exploit
Issue Tracking
https://github.com/wolfSSL/wolfssl/pull/7099
Issue Tracking
Patch

Уязвимые конфигурации

Конфигурация 1

cpe:2.3:a:wolfssl:wolfssl:*:*:*:*:*:*:*:*

Версия от 3.12.2 (включая) до 5.6.6 (включая)

EPSS

Процентиль: 53%

0.00305

Низкий

7.5 High

CVSS3

9.1 Critical

CVSS3

Дефекты

CWE-129

Связанные уязвимости

CVE-2024-0901

CVSS3: 7.5

ubuntu

почти 2 года назад

Remotely executed SEGV and out of bounds read allows malicious packet sender to crash or cause an out of bounds read via sending a malformed packet with the correct length.

CVE-2024-0901

CVSS3: 7.5

msrc

больше 1 года назад

SEGV and out of bounds memory read from malicious packet

CVE-2024-0901

CVSS3: 7.5

debian

почти 2 года назад

Remotely executed SEGV and out of bounds read allows malicious packet ...

GHSA-qrv4-68mg-fv43

CVSS3: 7.5

github

почти 2 года назад

Remotely executed SEGV and out of bounds read allows malicious packet sender to crash or cause an out of bounds read via sending a malformed packet with the correct length.

EPSS

Процентиль: 53%

0.00305

Низкий

7.5 High

CVSS3

9.1 Critical

CVSS3

Дефекты

CWE-129