First published: Wed Apr 03 2024(Updated: )
In Mbed TLS 3.3.0 through 3.5.2 before 3.6.0, a malicious client can cause information disclosure or a denial of service because of a stack buffer over-read (of less than 256 bytes) in a TLS 1.3 server via a TLS 3.1 ClientHello.
Credit: cve@mitre.org
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.