Lucene search
Veracode Vulnerability DatabaseVERACODE:45226HistoryJan 30, 2024 - 6:46 p.m.
Key Boundary Confusion
2024-01-3018:46:42
Veracode Vulnerability Database
sca.analysiscenter.veracode.com
2
wolfssl
key boundary confusion
vulnerability
(d)tls
messages
securitycontexts
software
CVSS3
5.3
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
LOW
Integrity Impact
NONE
Availability Impact
NONE
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N
AI Score
6.7
Confidence
Low
wolfssl is vulnerable to Key Boundary Confusion attack. The vulnerability is due to wolfSSL failing to enforce boundaries between (D)TLS messages handled by different keys, allowing for the amalgamation of messages meant for different security contexts into a single record.
Related
ubuntucve
ubuntucve
CVE-2023-6937
2024-02-15 00:00:00
debiancve
debiancve
CVE-2023-6937
2024-02-15 18:15:44
cvelist
cvelist
CVE-2023-6937 Improper (D)TLS key boundary enforcement
2024-02-15 17:21:44
nvd
nvd
CVE-2023-6937
2024-02-15 18:15:44
prion
prion
Authentication flaw
2024-02-15 18:15:00
alpinelinux
alpinelinux
CVE-2023-6937
2024-02-15 18:15:44
vulnrichment
vulnrichment
CVE-2023-6937 Improper (D)TLS key boundary enforcement
2024-02-15 17:21:44
cve
cve
CVE-2023-6937
2024-02-15 18:15:44
CVSS3
5.3
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
LOW
Integrity Impact
NONE
Availability Impact
NONE
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N
AI Score
6.7
Confidence
Low
Related for VERACODE:45226