Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

1490 matches found

Debian CVE
Debian CVEadded 2024/02/20 9:52 p.m.23 views

CVE-2023-6936

In wolfSSL prior to 5.6.6, if callback functions are enabled via the WOLFSSLCALLBACKS flag, then a malicious TLS client or network attacker can trigger a buffer over-read on the heap of 5 bytes WOLFSSLCALLBACKS is only intended for debugging...

9.1CVSS5.5AI score0.006EPSS
Exploits0
AlpineLinux
AlpineLinuxadded 2024/02/20 9:52 p.m.25 views

CVE-2023-6936

In wolfSSL prior to 5.6.6, if callback functions are enabled via the WOLFSSLCALLBACKS flag, then a malicious TLS client or network attacker can trigger a buffer over-read on the heap of 5 bytes WOLFSSLCALLBACKS is only intended for debugging...

9.1CVSS5.4AI score0.006EPSS
Exploits0
CNNVD
CNNVDadded 2024/02/20 12:0 a.m.3 views

wolfSSL 缓冲区错误漏洞

wolfSSL CyaSSL is the United States wolfSSL company for embedded systems developers to use a small, portable embedded SSL programming library. A security vulnerability exists in wolfSSL versions prior to 5.6.6, which can be exploited by an attacker to trigger a 5-byte buffer out-of-bounds read...

9.1CVSS6.9AI score0.006EPSS
Exploits0References4
Positive Technologies
Positive Technologiesadded 2024/02/20 12:0 a.m.3 views

PT-2024-15130 · Wolfssl +1 · Wolfssl +1

Name of the Vulnerable Software and Affected Versions: wolfSSL versions prior to 5.6.6 Description: The issue allows a malicious TLS client or network attacker to trigger a buffer over-read on the heap of 5 bytes if callback functions are enabled via the WOLFSSL CALLBACKS flag. This flag is only...

9.1CVSS7.5AI score0.006EPSS
Exploits0References15
Snyk
Snykadded 2024/02/15 6:46 p.m.1 views

Marvin Attack

Overview Affected versions of this package are vulnerable to Marvin Attack due to the improper handling of DTLS records that do not check if messages span key boundaries. An attacker can exploit this vulnerability to combine DTLS messages using different keys into one DTLS record. Notes: 1 An...

5.3CVSS6.9AI score0.00513EPSS
Exploits0References2
OSV
OSVadded 2024/02/15 6:15 p.m.0 views

DEBIAN-CVE-2023-6937

wolfSSL prior to 5.6.6 did not check that messages in one DTLS record do not span key boundaries. As a result, it was possible to combine DTLS messages using different keys into one DTLS record. The most extreme edge case is that, in DTLS 1.3, it was possible that an unencrypted DTLS 1.3 record...

5.3CVSS5.7AI score0.00513EPSS
Exploits0References1
NVD
NVDadded 2024/02/15 6:15 p.m.14 views

CVE-2023-6937

wolfSSL prior to 5.6.6 did not check that messages in one DTLS record do not span key boundaries. As a result, it was possible to combine DTLS messages using different keys into one DTLS record. The most extreme edge case is that, in DTLS 1.3, it was possible that an unencrypted DTLS 1.3 record...

5.3CVSS5.3AI score0.00513EPSS
Exploits0References2
OSV
OSVadded 2024/02/15 6:15 p.m.6 views

CVE-2023-6937

wolfSSL prior to 5.6.6 did not check that messages in one DTLS record do not span key boundaries. As a result, it was possible to combine DTLS messages using different keys into one DTLS record. The most extreme edge case is that, in DTLS 1.3, it was possible that an unencrypted DTLS 1.3 record...

5.3CVSS6.7AI score
Exploits0References2
Prion
Prionadded 2024/02/15 6:15 p.m.17 views

Authentication flaw

wolfSSL prior to 5.6.6 did not check that messages in one DTLS record do not span key boundaries. As a result, it was possible to combine DTLS messages using different keys into one DTLS record. The most extreme edge case is that, in DTLS 1.3, it was possible that an unencrypted DTLS 1.3 record...

5CVSS7.4AI score0.00513EPSS
Exploits0References2
OSV
OSVadded 2024/02/15 6:15 p.m.1 views

UBUNTU-CVE-2023-6937

wolfSSL prior to 5.6.6 did not check that messages in one DTLS record do not span key boundaries. As a result, it was possible to combine DTLS messages using different keys into one DTLS record. The most extreme edge case is that, in DTLS 1.3, it was possible that an unencrypted DTLS 1.3 record...

5.3CVSS5.8AI score0.00513EPSS
Exploits0References3
UbuntuCve
UbuntuCveadded 2024/02/15 6:15 p.m.25 views

CVE-2023-6937

wolfSSL prior to 5.6.6 did not check that messages in one DTLS record do not span key boundaries. As a result, it was possible to combine DTLS messages using different keys into one DTLS record. The most extreme edge case is that, in DTLS 1.3, it was possible that an unencrypted DTLS 1.3 record...

5.3CVSS6.1AI score0.00513EPSS
Exploits0References2
CVE
CVEadded 2024/02/15 5:21 p.m.54 views

CVE-2023-6937

Summary: CVE-2023-6937 affects wolfSSL prior to 5.6.6, where messages within a single (D)TLS record were not checked for crossing key boundaries. This allows combining messages encrypted under different keys into one record, with a notable edge case in (D)TLS 1.3 where an unencrypted server fligh...

5.3CVSS5.2AI score0.00513EPSS
Exploits0References2Affected Software1
Debian CVE
Debian CVEadded 2024/02/15 5:21 p.m.27 views

CVE-2023-6937

wolfSSL prior to 5.6.6 did not check that messages in one DTLS record do not span key boundaries. As a result, it was possible to combine DTLS messages using different keys into one DTLS record. The most extreme edge case is that, in DTLS 1.3, it was possible that an unencrypted DTLS 1.3 record...

5.3CVSS5.2AI score0.00513EPSS
Exploits0
AlpineLinux
AlpineLinuxadded 2024/02/15 5:21 p.m.21 views

CVE-2023-6937

wolfSSL prior to 5.6.6 did not check that messages in one DTLS record do not span key boundaries. As a result, it was possible to combine DTLS messages using different keys into one DTLS record. The most extreme edge case is that, in DTLS 1.3, it was possible that an unencrypted DTLS 1.3 record...

5.3CVSS5.2AI score0.00513EPSS
Exploits0
CNNVD
CNNVDadded 2024/02/15 12:0 a.m.3 views

wolfSSL 安全漏洞

wolfSSL CyaSSL is the United States wolfSSL company for embedded systems developers to use a small, portable embedded SSL programming library. An input validation error vulnerability exists in WolfSSL versions prior to 5.6.6, which stems from a failure to check if a message crosses a key boundary...

5.3CVSS6.7AI score0.00513EPSS
Exploits0References3
Positive Technologies
Positive Technologiesadded 2024/02/15 12:0 a.m.1 views

PT-2024-15131 · Wolfssl +1 · Wolfssl +1

Name of the Vulnerable Software and Affected Versions: wolfSSL versions prior to 5.6.6 Description: The issue arises from the failure to check that messages in one DTLS record do not span key boundaries, allowing the combination of DTLS messages using different keys into one DTLS record. In the...

5.3CVSS7.1AI score0.00513EPSS
Exploits0References17
Snyk
Snykadded 2024/02/09 11:45 p.m.3 views

Observable Discrepancy

Overview Affected versions of this package are vulnerable to Observable Discrepancy due to the implementation of the SP Math All RSA when built with specific configuration options. An attacker can decrypt ciphertexts and forge signatures after probing with a large number of test observations...

5.9CVSS6.8AI score0.00539EPSS
Exploits0References2
NVD
NVDadded 2024/02/09 11:15 p.m.7 views

CVE-2023-6935

wolfSSL SP Math All RSA implementation is vulnerable to the Marvin Attack, new variation of a timing Bleichenbacher style attack, when built with the following options to configure: --enable-all CFLAGS="-DWOLFSSLSTATICRSA" The define “WOLFSSLSTATICRSA” enables static RSA cipher suites, which is n...

5.9CVSS5.6AI score0.00539EPSS
Exploits0References2
OSV
OSVadded 2024/02/09 11:15 p.m.1 views

DEBIAN-CVE-2023-6935

wolfSSL SP Math All RSA implementation is vulnerable to the Marvin Attack, new variation of a timing Bleichenbacher style attack, when built with the following options to configure: --enable-all CFLAGS="-DWOLFSSLSTATICRSA" The define “WOLFSSLSTATICRSA” enables static RSA cipher suites, which is n...

5.9CVSS5.8AI score0.00539EPSS
Exploits0References1
OSV
OSVadded 2024/02/09 11:15 p.m.11 views

CVE-2023-6935

wolfSSL SP Math All RSA implementation is vulnerable to the Marvin Attack, new variation of a timing Bleichenbacher style attack, when built with the following options to configure: --enable-all CFLAGS="-DWOLFSSLSTATICRSA" The define “WOLFSSLSTATICRSA” enables static RSA cipher suites, which is n...

5.9CVSS6.1AI score
Exploits0References2
Rows per page
Query Builder