VYPR

MbedTLS

by Arm

Source repositories

CVEs (72)

  • CVE-2020-36425Jul 19, 2021
    risk 0.00cvss epss 0.01

    An issue was discovered in Arm Mbed TLS before 2.24.0. It incorrectly uses a revocationDate check when deciding whether to honor certificate revocation via a CRL. In some situations, an attacker can exploit this by changing the local clock.

  • CVE-2020-36424Jul 19, 2021
    risk 0.00cvss epss 0.00

    An issue was discovered in Arm Mbed TLS before 2.24.0. An attacker can recover a private key (for RSA or static Diffie-Hellman) via a side-channel attack against generation of base blinding/unblinding values.

  • CVE-2020-36422Jul 19, 2021
    risk 0.00cvss epss 0.01

    An issue was discovered in Arm Mbed TLS before 2.23.0. A side channel allows recovery of an ECC private key, related to mbedtls_ecp_check_pub_priv, mbedtls_pk_parse_key, mbedtls_pk_parse_keyfile, mbedtls_ecp_mul, and mbedtls_ecp_mul_restartable.

  • CVE-2020-36426Jul 19, 2021
    risk 0.00cvss epss 0.02

    An issue was discovered in Arm Mbed TLS before 2.24.0. mbedtls_x509_crl_parse_der has a buffer over-read (of one byte).

  • CVE-2020-36423Jul 19, 2021
    risk 0.00cvss epss 0.01

    An issue was discovered in Arm Mbed TLS before 2.23.0. A remote attacker can recover plaintext because a certain Lucky 13 countermeasure doesn't properly consider the case of a hardware accelerator.

  • CVE-2021-24119Jul 14, 2021
    risk 0.00cvss epss 0.01

    In Trusted Firmware Mbed TLS 2.24.0, a side-channel vulnerability in base64 PEM file decoding allows system-level (administrator) attackers to obtain information about secret RSA keys via a controlled-channel and side-channel attack on software running in isolated environments…

  • CVE-2020-16150Sep 2, 2020
    risk 0.00cvss epss 0.00

    A Lucky 13 timing side channel in mbedtls_ssl_decrypt_buf in library/ssl_msg.c in Trusted Firmware Mbed TLS through 2.23.0 allows an attacker to recover secret key information. This affects CBC mode because of a computed time difference based on a padding length.

  • CVE-2020-10941Mar 24, 2020
    risk 0.00cvss epss 0.02

    Arm Mbed TLS before 2.16.5 allows attackers to obtain sensitive information (an RSA private key) by measuring cache usage during an import.

  • CVE-2019-18222Jan 23, 2020
    risk 0.00cvss epss 0.00

    The ECDSA signature implementation in ecdsa.c in Arm Mbed Crypto 2.1 and Mbed TLS through 2.19.1 does not reduce the blinded scalar before computing the inverse, which allows a local attacker to recover the private key via side-channel attacks.

  • CVE-2017-18187CriFeb 14, 2018
    risk 0.00cvss 9.8epss 0.03

    In ARM mbed TLS before 2.7.0, there is a bounds-check bypass through an integer overflow in PSK identity parsing in the ssl_parse_client_psk_identity() function in library/ssl_srv.c.

  • CVE-2015-8036Nov 2, 2015
    risk 0.00cvss epss 0.03

    Heap-based buffer overflow in ARM mbed TLS (formerly PolarSSL) 1.3.x before 1.3.14 and 2.x before 2.1.2 allows remote SSL servers to cause a denial of service (client crash) and possibly execute arbitrary code via a long session ticket name to the session ticket extension, which…

  • CVE-2015-5291Nov 2, 2015
    risk 0.00cvss epss 0.04

    Heap-based buffer overflow in PolarSSL 1.x before 1.2.17 and ARM mbed TLS (formerly PolarSSL) 1.3.x before 1.3.14 and 2.x before 2.1.2 allows remote SSL servers to cause a denial of service (client crash) and possibly execute arbitrary code via a long hostname to the server name…

Page 4 of 4