Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
An issue was discovered in Mbed TLS before 2.25.0 (and before 2.16.9 LTS and before 2.7.18 LTS). A NULL algorithm parameters entry looks identical to an array of REAL (size zero) and thus the certificate is considered valid. However, if the parameters do not match in any way, then the certificate should be considered invalid.
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
ARM mbed TLS 信任管理问题漏洞
Vulnerability Description
ARM mbed TLS是英国ARM公司的一款为mbed产品提供安全通讯和加密功能的产品。 ARM mbed TLS 2.25.0之前版本存在安全漏洞,该漏洞源于空算法参数项与实数数组(大小为0)相同,因此认为证书是有效的。但是,如果参数在任何方面不匹配,则认为证书无效。
CVSS Information
N/A
Vulnerability Type
N/A