漏洞信息
尽管我们使用了先进的大模型技术,但其输出仍可能包含不准确或过时的信息。神龙努力确保数据的准确性,但请您根据实际情况进行核实和判断。
Vulnerability Title
N/A
Vulnerability Description
A specially crafted x509 certificate can cause a single out of bounds byte overwrite in wolfSSL through 3.10.2 resulting in potential certificate validation vulnerabilities, denial of service and possible remote code execution. In order to trigger this vulnerability, the attacker needs to supply a malicious x509 certificate to either a server or a client application using this library.
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
wolfSSL 安全漏洞
Vulnerability Description
wolfSSL(前称CyaSSL)是美国wolfSSL公司的一个针对嵌入式系统开发人员使用的小的、可移植的嵌入式SSL编程库。 wolfSSL 3.10.2及之前的版本中存在安全漏洞。远程攻击者可通过向服务器或客户端应用程序提供恶意的x509证书利用该漏洞造成拒绝服务,执行代码。
CVSS Information
N/A
Vulnerability Type
N/A