CVE-2024-28960

Опубликовано: 29 мар. 2024

Источник: ubuntu

Приоритет: medium

EPSS Низкий

CVSS3: 8.2

Описание

An issue was discovered in Mbed TLS 2.18.0 through 2.28.x before 2.28.8 and 3.x before 3.6.0, and Mbed Crypto. The PSA Crypto API mishandles shared memory.

Релиз	Статус	Примечание
devel	not-affected	2.28.8-1
esm-apps/bionic	needs-triage
esm-apps/focal	needs-triage
esm-apps/jammy	needs-triage
esm-apps/noble	needs-triage
esm-apps/xenial	needs-triage
focal	ignored	end of standard support, was needs-triage
jammy	needs-triage
mantic	ignored	end of life, was needs-triage
noble	needs-triage

Показывать по

Ссылки на источники

EPSS

Процентиль: 34%

0.00134

Низкий

8.2 High

CVSS3

Связанные уязвимости

CVE-2024-28960

CVSS3: 5.3

redhat

около 1 года назад

An issue was discovered in Mbed TLS 2.18.0 through 2.28.x before 2.28.8 and 3.x before 3.6.0, and Mbed Crypto. The PSA Crypto API mishandles shared memory.

CVE-2024-28960

CVSS3: 8.2

nvd

около 1 года назад

An issue was discovered in Mbed TLS 2.18.0 through 2.28.x before 2.28.8 and 3.x before 3.6.0, and Mbed Crypto. The PSA Crypto API mishandles shared memory.

CVE-2024-28960

CVSS3: 8.2

msrc

7 месяцев назад

Описание отсутствует

CVE-2024-28960

CVSS3: 8.2

debian

около 1 года назад

An issue was discovered in Mbed TLS 2.18.0 through 2.28.x before 2.28. ...

GHSA-6h48-8w2f-5w94

CVSS3: 8.2

github

около 1 года назад

An issue was discovered in Mbed TLS 2.18.0 through 2.28.x before 2.28.8 and 3.x before 3.6.0, and Mbed Crypto. The PSA Crypto API mishandles shared memory.

EPSS

Процентиль: 34%

0.00134

Низкий

8.2 High

CVSS3

CVE-2024-28960

Описание

Пакет mbedtls

Ссылки на источники

Связанные уязвимости