Unrated severityNVD Advisory· Published Jan 28, 2020· Updated Aug 6, 2024
CVE-2014-2898
CVE-2014-2898
Description
wolfSSL CyaSSL before 2.9.4 allows remote attackers to have unspecified impact via multiple calls to the CyaSSL_read function which triggers an out-of-bounds read when an error occurs, related to not checking the return code and MAC verification failure.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
2- wolfSSL/CyaSSLdescription
Patches
Vulnerability mechanics
References
4- seclists.org/oss-sec/2014/q2/126mitrex_refsource_MISC
- seclists.org/oss-sec/2014/q2/130mitrex_refsource_MISC
- www.wolfssl.com/yaSSL/Blog/Entries/2014/4/11_wolfSSL_Security_Advisory__April_9%2C_2014.htmlmitrex_refsource_CONFIRM
- www.wolfssl.com/yaSSL/Docs-cyassl-changelog.htmlmitrex_refsource_CONFIRM
News mentions
0No linked articles in our index yet.