Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
MatrixSSL 4.0.4 through 4.5.1 has an integer overflow in matrixSslDecodeTls13. A remote attacker might be able to send a crafted TLS Message to cause a buffer overflow and achieve remote code execution. This is fixed in 4.6.0.
CVSS Information
CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H
Vulnerability Type
N/A
Vulnerability Title
Inside Secure MatrixSSL 输入验证错误漏洞
Vulnerability Description
Inside Secure MatrixSSL是法国Inside Secure公司的一个针对小型应用程序和设备而设计的嵌入式、开源SSLv3协议栈。 MatrixSSL 4.0.4版本至4.5.1版本存在安全漏洞,该漏洞源于在matrixSslDecodeTls13中存在整数溢出。攻击者利用该漏洞发送特制的TLS消息,导致缓冲区溢出并实现远程代码执行。
CVSS Information
N/A
Vulnerability Type
N/A