VYPR
Unrated severityNVD Advisory· Published Jul 19, 2021· Updated Aug 4, 2024

CVE-2020-36425

CVE-2020-36425

Description

An issue was discovered in Arm Mbed TLS before 2.24.0. It incorrectly uses a revocationDate check when deciding whether to honor certificate revocation via a CRL. In some situations, an attacker can exploit this by changing the local clock.

AI Insight

LLM-synthesized narrative grounded in this CVE's description and references.

Affected products

2
  • Arm/Mbed TLSdescription
  • Arm/MbedTLSllm-fuzzy
    Range: <2.24.0

Patches

Vulnerability mechanics

References

7

News mentions

0

No linked articles in our index yet.