9 matches found
Linux Distros Unpatched Vulnerability : CVE-2023-6936
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - In wolfSSL prior to 5.6.6, if callback functions are enabled via the WOLFSSLCALLBACKS flag, then a malicious TLS client or network attacker can trigger a buffer...
Azure Linux 3.0 Security Update: mariadb (CVE-2023-6936)
The version of mariadb installed on the remote Azure Linux 3.0 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the CVE-2023-6936 advisory. - In wolfSSL prior to 5.6.6, if callback functions are enabled via the WOLFSSLCALLBACKS flag, then a malicious...
CBL Mariner 2.0 Security Update: mariadb (CVE-2023-6936)
The version of mariadb installed on the remote CBL Mariner 2.0 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the CVE-2023-6936 advisory. - In wolfSSL prior to 5.6.6, if callback functions are enabled via the WOLFSSLCALLBACKS flag, then a malicious...
CVE-2023-6936
creationtimestamp| type| source ---|---|--- 2024-02-20 23:26:53+00:00| seen| https://t.me/ctinow/188999 2024-02-20 23:27:06+00:00| seen| https://t.me/ctinow/189007 2024-02-21 14:26:42+00:00| seen| https://t.me/arpsyndicate/3806 2024-03-09 01:01:36+00:00| seen| https://t.me/ctinow/203703 2025-02-1...
DEBIAN-CVE-2023-6936
In wolfSSL prior to 5.6.6, if callback functions are enabled via the WOLFSSLCALLBACKS flag, then a malicious TLS client or network attacker can trigger a buffer over-read on the heap of 5 bytes WOLFSSLCALLBACKS is only intended for debugging...
CVE-2023-6936 Heap-buffer over-read with WOLFSSL_CALLBACKS
In wolfSSL prior to 5.6.6, if callback functions are enabled via the WOLFSSLCALLBACKS flag, then a malicious TLS client or network attacker can trigger a buffer over-read on the heap of 5 bytes WOLFSSLCALLBACKS is only intended for debugging...
CVE-2023-6936 Heap-buffer over-read with WOLFSSL_CALLBACKS
In wolfSSL prior to 5.6.6, if callback functions are enabled via the WOLFSSLCALLBACKS flag, then a malicious TLS client or network attacker can trigger a buffer over-read on the heap of 5 bytes WOLFSSLCALLBACKS is only intended for debugging...
CVE-2023-6936
The vulnerability CVE-2023-6936 affects wolfSSL prior to 5.6.6, where enabling callbacks (WOLFSSL_CALLBACKS) can cause a 5-byte heap buffer over-read by a malicious TLS client or network attacker. Root cause is the use of WOLFSSL_CALLBACKS for debugging; impact is confidentiality/availability con...
CVE-2023-6936
In wolfSSL prior to 5.6.6, if callback functions are enabled via the WOLFSSLCALLBACKS flag, then a malicious TLS client or network attacker can trigger a buffer over-read on the heap of 5 bytes WOLFSSLCALLBACKS is only intended for debugging...