CVE-2024-0901

Remotely executed SEGV and out of bounds read allows malicious packet sender to crash or cause an out of bounds read via sending a malformed packet with the correct length.

CVSS v3 7.5 HIGH

7.5^/10

CVSS v3 : HIGH

V3 Legend

Vector :

Exploitability : 2.2 / Impact : 4.7

Attack Vector NETWORK

Attack Complexity HIGH

Privileges Required NONE

User Interaction NONE

Confidentiality Impact NONE

Integrity Impact LOW

Availability Impact HIGH

Scope CHANGED

References

Link	Resource
https://github.com/wolfSSL/wolfssl/issues/7089
https://github.com/wolfSSL/wolfssl/pull/7099

Configurations

No configuration.

History

No history.

Information

Published : 2024-03-25 23:15

Updated : 2024-03-26 12:55

NVD link : CVE-2024-0901

Mitre link : CVE-2024-0901

CVE.ORG link : CVE-2024-0901

JSON object : View

Products Affected

No product.

CWE

CWE-129

Improper Validation of Array Index

7.5 /10