Lucene search
K

7 matches found

Tenable Nessus
Tenable Nessus
added 2026/04/04 12:0 a.m.5 views

Linux Distros Unpatched Vulnerability : CVE-2026-34876

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - An issue was discovered in Mbed TLS 3.x before 3.6.6. An out-of-bounds read vulnerability in mbedtlsccmfinish in library/ccm.c allows attackers to obtain adjace...

7.5CVSS5.8AI score0.0039EPSS
Exploits0References3
EUVD
EUVD
added 2026/04/02 6:31 p.m.5 views

EUVD-2026-18356

An issue was discovered in Mbed TLS 3.x before 3.6.6. An out-of-bounds read vulnerability in mbedtlsccmfinish in library/ccm.c allows attackers to obtain adjacent CCM context data via invocation of the multipart CCM API with an oversized taglen parameter. This is caused by missing validation of t...

7.5CVSS5.9AI score0.0039EPSS
Exploits0References3
OSV
OSV
added 2026/04/02 4:16 p.m.3 views

DEBIAN-CVE-2026-34876

An issue was discovered in Mbed TLS 3.x before 3.6.6. An out-of-bounds read vulnerability in mbedtlsccmfinish in library/ccm.c allows attackers to obtain adjacent CCM context data via invocation of the multipart CCM API with an oversized taglen parameter. This is caused by missing validation of t...

7.5CVSS5.4AI score0.0039EPSS
Exploits0References1
OSV
OSV
added 2026/04/02 4:16 p.m.4 views

UBUNTU-CVE-2026-34876

An issue was discovered in Mbed TLS 3.x before 3.6.6. An out-of-bounds read vulnerability in mbedtlsccmfinish in library/ccm.c allows attackers to obtain adjacent CCM context data via invocation of the multipart CCM API with an oversized taglen parameter. This is caused by missing validation of t...

7.5CVSS5.8AI score0.0039EPSS
Exploits0References3
CNNVD
CNNVD
added 2026/04/02 12:0 a.m.7 views

Mbed TLS 安全漏洞

Mbed TLS is an open-source, portable, easy-to-use, readable, and flexible SSL library developed by Mbed TLS. Versions of Mbed TLS prior to 3.6.6 contained security vulnerabilities. These vulnerabilities stemmed from a lack of validation for the taglen parameter in the mbedtlsccmfinish function,...

7.5CVSS5.8AI score0.0039EPSS
Exploits0References2
CVE
CVE
added 2026/04/02 12:0 a.m.19 views

CVE-2026-34876

The CVE-2026-34876 issue affects Mbed TLS 3.x prior to 3.6.6. An out-of-bounds read in mbedtls_ccm_finish() (library/ccm.c) can reveal adjacent CCM context data when the multipart CCM API is invoked with an oversized tag_len. Root cause: missing validation of tag_len against the internal 16-byte ...

7.5CVSS5.9AI score0.0039EPSS
Exploits0References2Affected Software1
Cvelist
Cvelist
added 2026/04/02 12:0 a.m.19 views

CVE-2026-34876

An issue was discovered in Mbed TLS 3.x before 3.6.6. An out-of-bounds read vulnerability in mbedtlsccmfinish in library/ccm.c allows attackers to obtain adjacent CCM context data via invocation of the multipart CCM API with an oversized taglen parameter. This is caused by missing validation of t...

0.0039EPSS
Exploits0References2
Rows per page
Query Builder