Lucene search
K

4 matches found

SUSE CVE
SUSE CVE
added 2026/04/03 11:24 p.m.10 views

SUSE CVE-2026-34876

An issue was discovered in Mbed TLS 3.x before 3.6.6. An out-of-bounds read vulnerability in mbedtlsccmfinish in library/ccm.c allows attackers to obtain adjacent CCM context data via invocation of the multipart CCM API with an oversized taglen parameter. This is caused by missing validation of t...

7.5CVSS5.8AI score0.0039EPSS
Exploits0References3
RedhatCVE
RedhatCVE
added 2026/04/02 7:16 p.m.1 views

CVE-2026-34876

An issue was discovered in Mbed TLS 3.x before 3.6.6. An out-of-bounds read vulnerability in mbedtlsccmfinish in library/ccm.c allows attackers to obtain adjacent CCM context data via invocation of the multipart CCM API with an oversized taglen parameter. This is caused by missing validation of t...

7.5CVSS5.9AI score0.0039EPSS
Exploits0References2
CVE
CVE
added 2026/04/02 12:0 a.m.21 views

CVE-2026-34876

The CVE-2026-34876 issue affects Mbed TLS 3.x prior to 3.6.6. An out-of-bounds read in mbedtls_ccm_finish() (library/ccm.c) can reveal adjacent CCM context data when the multipart CCM API is invoked with an oversized tag_len. Root cause: missing validation of tag_len against the internal 16-byte ...

7.5CVSS5.9AI score0.0039EPSS
Exploits0References2Affected Software1
Debian CVE
Debian CVE
added 2026/04/02 12:0 a.m.5 views

CVE-2026-34876

An issue was discovered in Mbed TLS 3.x before 3.6.6. An out-of-bounds read vulnerability in mbedtlsccmfinish in library/ccm.c allows attackers to obtain adjacent CCM context data via invocation of the multipart CCM API with an oversized taglen parameter. This is caused by missing validation of t...

7.5CVSS5.3AI score0.0039EPSS
Exploits0
Rows per page
Query Builder