Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
arm mbed tls 3.0.0 vulnerabilities and exploits
(subscribe to this query)
7.5
CVSSv2
CVE-2021-44732
Mbed TLS prior to 3.0.1 has a double free in certain out-of-memory conditions, as demonstrated by an mbedtls_ssl_set_session() failure.
Arm Mbed Tls
Arm Mbed Tls 3.0.0
Debian Debian Linux 10.0
5
CVSSv2
CVE-2021-45450
In Mbed TLS prior to 2.28.0 and 3.x prior to 3.1.0, psa_cipher_generate_iv and psa_cipher_encrypt allow policy bypass or oracle-based decryption when the output buffer is at memory locations accessible to an untrusted application.
Arm Mbed Tls 3.0.0
Arm Mbed Tls
Fedoraproject Fedora 36
Fedoraproject Fedora 37
NA
CVE-2021-36647
Use of a Broken or Risky Cryptographic Algorithm in the function mbedtls_mpi_exp_mod() in lignum.c in Mbed TLS Mbed TLS all versions prior to 3.0.0, 2.27.0 or 2.16.11 allows attackers with access to precise enough timing and memory access information (typically an untrusted opera...
Arm Mbed Tls
1 Github repository
5
CVSSv2
CVE-2021-43666
A Denial of Service vulnerability exists in mbed TLS 3.0.0 and previous versions in the mbedtls_pkcs12_derivation function when an input password's length is 0.
Arm Mbed Tls
Debian Debian Linux 10.0
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
blind SQL injection
CVE-2006-4304
CVE-2023-26603
CVE-2024-28327
CVE-2023-50363
CVE-2024-21905
template injection
CVE-2024-3400
cross-site request forgery
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started