Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
9.8
CVE-2024-45158
- EPSS 0.68%
- Veröffentlicht 05.09.2024 19:15:13
- Zuletzt bearbeitet 05.06.2026 19:38:32
An issue was discovered in Mbed TLS 3.6 before 3.6.1. A stack buffer overflow in mbedtls_ecdsa_der_to_raw() and mbedtls_ecdsa_raw_to_der() can occur when the bits parameter is larger than the largest supported curve. In some configurations with PSA d...
6.5
CVE-2024-28755
- EPSS 0.4%
- Veröffentlicht 03.04.2024 03:15:10
- Zuletzt bearbeitet 05.06.2026 19:38:32
An issue was discovered in Mbed TLS 3.5.x before 3.6.0. When an SSL context was reset with the mbedtls_ssl_session_reset() API, the maximum TLS version to be negotiated was not restored to the configured one. An attacker was able to prevent an Mbed T...
8.2
CVE-2024-28960
- EPSS 0.84%
- Veröffentlicht 29.03.2024 06:15:07
- Zuletzt bearbeitet 05.06.2026 19:38:32
An issue was discovered in Mbed TLS 2.18.0 through 2.28.x before 2.28.8 and 3.x before 3.6.0, and Mbed Crypto. The PSA Crypto API mishandles shared memory.