Lucene search

MitreCVELIST:CVE-2024-28960

HistoryMar 29, 2024 - 12:00 a.m.

CVE-2024-28960

2024-03-2900:00:00

mitre

www.cve.org

cve-2024-28960

mbed crypto

security issue

7.6 High

AI Score

Confidence

High

0.0004 Low

EPSS

Percentile

15.5%

JSON

An issue was discovered in Mbed TLS 2.18.0 through 2.28.x before 2.28.8 and 3.x before 3.6.0, and Mbed Crypto. The PSA Crypto API mishandles shared memory.

References

github.com/Mbed-TLS/mbedtls-docs/blob/main/security-advisories/mbedtls-security-advisory-2024-03.md

lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/5YE3QRREGJC6K34JD4LZ5P3IALNX4QYY/

lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/6UZNBMKYEV2J5DI7R4BQGL472V7X3WJY/

lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/NCDU52ZDA7TX3HC5JCU6ZZIJQOPTNBK6/

mbed-tls.readthedocs.io/en/latest/tech-updates/security-advisories/