CVE-2024-0901

  1. OpenCVE
  2. Vulnerabilities (CVE)
  3. CVE-2024-0901
Remotely executed SEGV and out of bounds read allows malicious packet sender to crash or cause an out of bounds read via sending a malformed packet with the correct length.

7.5 /10

CVSS v3 : HIGH

V3 Legend

Vector :

Exploitability : 2.2 / Impact : 4.7

Attack Vector NETWORK

Attack Complexity HIGH

Privileges Required NONE

User Interaction NONE

Confidentiality Impact NONE

Integrity Impact LOW

Availability Impact HIGH

Scope CHANGED

References
Link Resource
https://github.com/wolfSSL/wolfssl/issues/7089
https://github.com/wolfSSL/wolfssl/pull/7099
Configurations

No configuration.

History

26 Mar 2024, 12:55

Type Values Removed Values Added
Summary
  • (es) SEGV ejecutado de forma remota y lectura fuera de los límites permite que el remitente de paquetes maliciosos falle o provoque una lectura fuera de los límites mediante el envío de un paquete con formato incorrecto y con la longitud correcta.

25 Mar 2024, 23:15

Type Values Removed Values Added
New CVE
Information

Published : 2024-03-25 23:15

Updated : 2024-03-26 12:55

NVD link : CVE-2024-0901

Mitre link : CVE-2024-0901

CVE.ORG link : CVE-2024-0901

JSON object : View

Products Affected

No product.

CWE
CWE-129

Improper Validation of Array Index