VYPR

Vendor CVEs

Matrixssl

All CVEs

26 total · sorted by risk
  • CVE-2017-2781CriJun 22, 2017
    risk 0.64cvss 9.8epss 0.02

    An exploitable heap buffer overflow vulnerability exists in the X509 certificate parsing functionality of InsideSecure MatrixSSL 3.8.7b. A specially crafted x509 certificate can cause a buffer overflow on the heap resulting in remote code execution. To trigger this…

  • CVE-2017-2780CriJun 22, 2017
    risk 0.64cvss 9.8epss 0.02

    An exploitable heap buffer overflow vulnerability exists in the X509 certificate parsing functionality of InsideSecure MatrixSSL 3.8.7b. A specially crafted x509 certificate can cause a buffer overflow on the heap resulting in remote code execution. To trigger this…

  • CVE-2016-6890CriJan 5, 2017
    risk 0.64cvss 9.8epss 0.06

    Heap-based buffer overflow in MatrixSSL before 3.8.6 allows remote attackers to execute arbitrary code via a crafted Subject Alt Name in an X.509 certificate.

  • CVE-2016-6886HigJan 13, 2017
    risk 0.49cvss 7.5epss 0.02

    The pstm_reverse function in MatrixSSL before 3.8.4 allows remote attackers to cause a denial of service (invalid memory read and crash) via a (1) zero value or (2) the key's modulus for the secret key during RSA key exchange.

  • CVE-2016-6885HigJan 13, 2017
    risk 0.49cvss 7.5epss 0.01

    The pstm_exptmod function in MatrixSSL before 3.8.4 allows remote attackers to cause a denial of service (invalid free and crash) via a base zero value for the modular exponentiation.

  • CVE-2016-6892HigJan 5, 2017
    risk 0.49cvss 7.5epss 0.02

    The x509FreeExtensions function in MatrixSSL before 3.8.6 allows remote attackers to cause a denial of service (free of unallocated memory) via a crafted X.509 certificate.

  • CVE-2016-6891HigJan 5, 2017
    risk 0.49cvss 7.5epss 0.02

    MatrixSSL before 3.8.6 allows remote attackers to cause a denial of service (out-of-bounds read) via a crafted ASN.1 Bit Field primitive in an X.509 certificate.

  • CVE-2017-2782MedJun 22, 2017
    risk 0.42cvss 6.5epss 0.01

    An integer overflow vulnerability exists in the X509 certificate parsing functionality of InsideSecure MatrixSSL 3.8.7b. A specially crafted x509 certificate can cause a length counter to overflow, leading to a controlled out of bounds copy operation. To trigger this…

  • CVE-2016-6884MedMar 3, 2017
    risk 0.42cvss 6.5epss 0.01

    TLS cipher suites with CBC mode in TLS 1.1 and 1.2 in MatrixSSL before 3.8.3 allow remote attackers to cause a denial of service (out-of-bounds read) via a crafted message.

  • CVE-2016-6883MedMar 3, 2017
    risk 0.42cvss 5.9epss 0.14

    MatrixSSL before 3.8.3 configured with RSA Cipher Suites allows remote attackers to obtain sensitive information via a Bleichenbacher variant attack.

  • CVE-2017-1000415MedJan 9, 2018
    risk 0.38cvss 5.9epss 0.00

    MatrixSSL version 3.7.2 has an incorrect UTCTime date range validation in its X.509 certificate validation process resulting in some certificates have their expiration (beginning) year extended (delayed) by 100 years.

  • CVE-2016-6882MedMar 3, 2017
    risk 0.38cvss 5.9epss 0.01

    MatrixSSL before 3.8.7, when the DHE_RSA based cipher suite is supported, makes it easier for remote attackers to obtain RSA private key information by conducting a Lenstra side-channel attack.

  • CVE-2016-8671MedJan 13, 2017
    risk 0.38cvss 5.9epss 0.01

    The pstm_exptmod function in MatrixSSL 3.8.6 and earlier does not properly perform modular exponentiation, which might allow remote attackers to predict the secret key via unspecified vectors. NOTE: this vulnerability exists because of an incomplete fix for CVE-2016-6887.

  • CVE-2016-6887MedJan 13, 2017
    risk 0.38cvss 5.9epss 0.01

    The pstm_exptmod function in MatrixSSL 3.8.6 and earlier does not properly perform modular exponentiation, which might allow remote attackers to predict the secret key via a CRT attack.

  • CVE-2017-1000417MedJan 22, 2018
    risk 0.35cvss 5.3epss 0.01

    MatrixSSL version 3.7.2 adopts a collision-prone OID comparison logic resulting in possible spoofing of OIDs (e.g. in ExtKeyUsage extension) on X.509 certificates.

  • CVE-2018-12439MedJun 15, 2018
    risk 0.31cvss 4.7epss 0.00

    MatrixSSL through 3.9.5 Open allows a memory-cache side-channel attack on ECDSA signatures, aka the Return Of the Hidden Number Problem or ROHNP. To discover an ECDSA key, the attacker needs access to either the local machine or a different virtual machine on the same physical…

  • CVE-2022-43974Jan 9, 2023
    risk 0.01cvss epss 0.02

    MatrixSSL 4.0.4 through 4.5.1 has an integer overflow in matrixSslDecodeTls13. A remote attacker might be able to send a crafted TLS Message to cause a buffer overflow and achieve remote code execution. This is fixed in 4.6.0.

  • CVE-2023-24609Dec 22, 2023
    risk 0.00cvss epss 0.01

    Matrix SSL 4.x through 4.6.0 and Rambus TLS Toolkit have a length-subtraction integer overflow for Client Hello Pre-Shared Key extension parsing in the TLS 1.3 server. An attacked device calculates an SHA-2 hash over at least 65 KB (in RAM). With a large number of crafted TLS…

  • CVE-2022-46505Jan 18, 2023
    risk 0.00cvss epss 0.01

    An issue in MatrixSSL 4.5.1-open and earlier leads to failure to securely check the SessionID field, resulting in the misuse of an all-zero MasterSecret that can decrypt secret data.

  • CVE-2019-16747Dec 30, 2020
    risk 0.00cvss epss 0.02

    In MatrixSSL before 4.2.2 Open, the DTLS server can encounter an invalid pointer free (leading to memory corruption and a daemon crash) via a crafted incoming network message, a different vulnerability than CVE-2019-14431.

  • CVE-2019-13629Oct 3, 2019
    risk 0.00cvss epss 0.01

    MatrixSSL 4.2.1 and earlier contains a timing side channel in ECDSA signature generation. This allows a local or a remote attacker, able to measure the duration of hundreds to thousands of signing operations, to compute the private key used. The issue occurs because…

  • CVE-2019-14431Jul 29, 2019
    risk 0.00cvss epss 0.04

    In MatrixSSL 3.8.3 Open through 4.2.1 Open, the DTLS server mishandles incoming network messages leading to a heap-based buffer overflow of up to 256 bytes and possible Remote Code Execution in parseSSLHandshake in sslDecode.c. During processing of a crafted packet, the server…

  • CVE-2019-13470Jul 9, 2019
    risk 0.00cvss epss 0.02

    MatrixSSL before 4.2.1 has an out-of-bounds read during ASN.1 handling.

  • CVE-2019-10914Apr 8, 2019
    risk 0.00cvss epss 0.01

    pubRsaDecryptSignedElementExt in MatrixSSL 4.0.1 Open, as used in Inside Secure TLS Toolkit, has a stack-based buffer overflow during X.509 certificate verification because of missing validation in psRsaDecryptPubExt in crypto/pubkey/rsa_pub.c.

  • CVE-2004-2682Dec 31, 2004
    risk 0.00cvss epss 0.01

    PeerSec MatrixSSL before 1.1 does not implement RSA blinding, which allows context-dependent attackers to obtain the server's private key by determining factors using timing differences on (1) the number of extra reductions during Montgomery reduction, and (2) the use of…

  • CVE-2004-2681Dec 31, 2004
    risk 0.00cvss epss 0.01

    PeerSec MatrixSSL before 1.1 caches session keys for an indefinitely long time, which might make it easier for remote attackers to hijack a session.