Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

3 matches found

Veracode
Veracodeadded 2024/11/21 6:30 a.m.11 views

Buffer Underrun

libmbedtls.so is vulnerable to Buffer Underrun. The vulnerability is due to improper memory handling in pkwrite when writing an opaque key pair, allows an attacker to potentially execute arbitrary code or cause a denial of service...

9.8CVSS7.5AI score0.00996EPSS
Exploits0References6Affected Software1
Veracode
Veracodeadded 2024/02/20 12:15 p.m.25 views

Side Channel Attacks

libmbedtls.so is vulnerable to plain text recovery via side-channel attacks. The vulnerability is due to the ability of local users to achieve partial plaintext recovery for a CBC based ciphersuite via measuring the time it takes to perform certain cryptographic operations. An attacker can gather...

4.7CVSS6.3AI score0.00193EPSS
Exploits0References5Affected Software1
Tenable Nessus
Tenable Nessusadded 2018/09/17 12:0 a.m.31 views

Debian DSA-4296-1 : mbedtls - security update

Two vulnerabilities were discovered in mbedtls, a lightweight crypto and SSL/TLS library which could result in plain text recovery via side-channel attacks. C Tenable Network Security, Inc. The descriptive text and package checks in this plugin were extracted from Debian Security Advisory DSA-429...

5.9CVSS6AI score0.0031EPSS
Exploits0References5
Rows per page
Query Builder