Lucene search
WolfSSLCVELIST:CVE-2024-0901HistoryMar 25, 2024 - 10:37 p.m.
CVE-2024-0901 SEGV and out of bounds memory read from malicious packet
2024-03-2522:37:56
CWE-129
wolfSSL
www.cve.org
1
cve-2024-0901
security vulnerability
remote execution
memory corruption
malicious packet
7.5 High
CVSS3
Attack Vector
NETWORK
Attack Complexity
HIGH
Privileges Required
NONE
User Interaction
NONE
Scope
CHANGED
Confidentiality Impact
NONE
Integrity Impact
LOW
Availability Impact
HIGH
CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:C/C:N/I:L/A:H
0.0004 Low
EPSS
Percentile
9.2%
Remotely executed SEGV and out of bounds read allows malicious packet sender to crash or cause an out of bounds read via sending a malformed packet with the correct length.
CNA Affected
[
{
"defaultStatus": "unaffected",
"product": "wolfSSL",
"repo": "https://github.com/wolfSSL/wolfssl",
"vendor": "wolfSSL",
"versions": [
{
"lessThanOrEqual": "5.6.6",
"status": "affected",
"version": "3.12.2",
"versionType": "release bundle"
}
]
}
]Related
cve
cve
CVE-2024-0901
2024-03-25 23:15:51
nvd
nvd
CVE-2024-0901
2024-03-25 23:15:51
debiancve
debiancve
CVE-2024-0901
2024-03-25 23:15:51
ubuntucve
ubuntucve
CVE-2024-0901
2024-03-25 00:00:00
veracode
veracode
Improper Validation Of Array Index
2024-04-11 02:05:23
alpinelinux
alpinelinux
CVE-2024-0901
2024-03-25 23:15:51
7.5 High
CVSS3
Attack Vector
NETWORK
Attack Complexity
HIGH
Privileges Required
NONE
User Interaction
NONE
Scope
CHANGED
Confidentiality Impact
NONE
Integrity Impact
LOW
Availability Impact
HIGH
CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:C/C:N/I:L/A:H
0.0004 Low
EPSS
Percentile
9.2%
Related for CVELIST:CVE-2024-0901