Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
Integer Underflow Leads to Out-of-Bounds Access in XChaCha20-Poly1305 Decrypt
Vulnerability Description
Integer Underflow Leads to Out-of-Bounds Access in XChaCha20-Poly1305 Decrypt. This issue is hit specifically with a call to the function wc_XChaCha20Poly1305_Decrypt() which is not used with TLS connections, only from direct calls from an application.
CVSS Information
N/A
Vulnerability Type
整数下溢(超界折返)
Vulnerability Title
wolfSSL 安全漏洞
Vulnerability Description
wolfSSL(CyaSSL)是美国wolfSSL公司的一个针对嵌入式系统开发人员使用的小的、可移植的嵌入式SSL编程库。 wolfSSL存在安全漏洞,该漏洞源于XChaCha20-Poly1305解密过程中整数下溢,可能导致越界访问。
CVSS Information
N/A
Vulnerability Type
N/A