Lucene search
K

5 matches found

attackerkb
attackerkb
added 2022/08/31 6:15 p.m.4 views

CVE-2022-38153

An issue was discovered in wolfSSL before 5.5.0 when --enable-session-ticket is used; however, only version 5.3.0 is exploitable. Man-in-the-middle attackers or a malicious server can crash TLS 1.2 clients during a handshake. If an attacker injects a large ticket more than 256 bytes into a...

5.9CVSS6.2AI score0.01801EPSS
Exploits2References8
nvd
nvd
added 2022/08/31 6:15 p.m.26 views

CVE-2022-38153

An issue was discovered in wolfSSL before 5.5.0 when --enable-session-ticket is used; however, only version 5.3.0 is exploitable. Man-in-the-middle attackers or a malicious server can crash TLS 1.2 clients during a handshake. If an attacker injects a large ticket more than 256 bytes into a...

5.9CVSS0.01801EPSS
Exploits2References7
cve
cve
added 2022/08/31 12:0 a.m.74 views

CVE-2022-38153

WolfSSL vulnerability CVE-2022-38153 affects version 5.3.0 (and only 5.3.x is exploitable) where an attacker can inject a large NewSessionTicket (>256 bytes) in a TLS 1.2 handshake to cause the client to crash by freeing an invalid pointer in the session cache. This can enable a MITM-style cra...

5.9CVSS5.6AI score0.01801EPSS
Exploits2References7Affected Software1
cvelist
cvelist
added 2022/08/31 12:0 a.m.25 views

CVE-2022-38153

An issue was discovered in wolfSSL before 5.5.0 when --enable-session-ticket is used; however, only version 5.3.0 is exploitable. Man-in-the-middle attackers or a malicious server can crash TLS 1.2 clients during a handshake. If an attacker injects a large ticket more than 256 bytes into a...

5.9AI score0.01801EPSS
Exploits2References7
debiancve
debiancve
added 2022/08/31 12:0 a.m.37 views

CVE-2022-38153

An issue was discovered in wolfSSL before 5.5.0 when --enable-session-ticket is used; however, only version 5.3.0 is exploitable. Man-in-the-middle attackers or a malicious server can crash TLS 1.2 clients during a handshake. If an attacker injects a large ticket more than 256 bytes into a...

5.9CVSS5.7AI score0.01801EPSS
Exploits2
Rows per page
Query Builder