Lucene search
+L

4 matches found

RedhatCVE
RedhatCVE
added 2025/05/23 1:54 a.m.9 views

CVE-2023-24609

Matrix SSL 4.x through 4.6.0 and Rambus TLS Toolkit have a length-subtraction integer overflow for Client Hello Pre-Shared Key extension parsing in the TLS 1.3 server. An attacked device calculates an SHA-2 hash over at least 65 KB in RAM. With a large number of crafted TLS messages, the CPU...

7.5CVSS7.2AI score0.00731EPSS
Exploits1References1
NVD
NVD
added 2023/12/22 4:15 a.m.34 views

CVE-2023-24609

Matrix SSL 4.x through 4.6.0 and Rambus TLS Toolkit have a length-subtraction integer overflow for Client Hello Pre-Shared Key extension parsing in the TLS 1.3 server. An attacked device calculates an SHA-2 hash over at least 65 KB in RAM. With a large number of crafted TLS messages, the CPU...

7.5CVSS0.00731EPSS
Exploits1References2
UbuntuCve
UbuntuCve
added 2023/12/22 4:15 a.m.65 views

CVE-2023-24609

Matrix SSL 4.x through 4.6.0 and Rambus TLS Toolkit have a length-subtraction integer overflow for Client Hello Pre-Shared Key extension parsing in the TLS 1.3 server. An attacked device calculates an SHA-2 hash over at least 65 KB in RAM. With a large number of crafted TLS messages, the CPU...

7.5CVSS7.1AI score0.00731EPSS
Exploits1References1
CVE
CVE
added 2023/12/22 12:0 a.m.56 views

CVE-2023-24609

Matrix SSL versions 4.x–4.6.0 and Rambus TLS Toolkit are affected by a length-subtraction integer overflow in the TLS 1.3 server ClientHello PSK extension parsing. The overflow can cause an attacked device to compute an SHA-2 hash over at least 65 KB in RAM, leading to heavy CPU load when many cr...

7.5CVSS7.6AI score0.00731EPSS
Exploits1References2Affected Software1
Rows per page
Query Builder