Shodan
Vulnerabilities
Vulnerable Software

Vulnerability Details CVE-2018-0487

ARM mbed TLS before 1.3.22, before 2.1.10, and before 2.7.0 allows remote attackers to execute arbitrary code or cause a denial of service (buffer overflow) via a crafted certificate chain that is mishandled during RSASSA-PSS signature verification within a TLS or DTLS session.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.071
EPSS Ranking 91.0%
CVSS Severity
CVSS v3 Score 9.8
CVSS v2 Score 7.5
Products affected by CVE-2018-0487
  • Arm » Mbed Tls » Version: 1.3.10
    cpe:2.3:a:arm:mbed_tls:1.3.10
  • Arm » Mbed Tls » Version: 1.3.11
    cpe:2.3:a:arm:mbed_tls:1.3.11
  • Arm » Mbed Tls » Version: 1.3.12
    cpe:2.3:a:arm:mbed_tls:1.3.12
  • Arm » Mbed Tls » Version: 1.3.13
    cpe:2.3:a:arm:mbed_tls:1.3.13
  • Arm » Mbed Tls » Version: 1.3.14
    cpe:2.3:a:arm:mbed_tls:1.3.14
  • Arm » Mbed Tls » Version: 1.3.15
    cpe:2.3:a:arm:mbed_tls:1.3.15
  • Arm » Mbed Tls » Version: 1.3.16
    cpe:2.3:a:arm:mbed_tls:1.3.16
  • Arm » Mbed Tls » Version: 1.3.17
    cpe:2.3:a:arm:mbed_tls:1.3.17
  • Arm » Mbed Tls » Version: 1.3.18
    cpe:2.3:a:arm:mbed_tls:1.3.18
  • Arm » Mbed Tls » Version: 1.3.19
    cpe:2.3:a:arm:mbed_tls:1.3.19
  • Arm » Mbed Tls » Version: 1.3.20
    cpe:2.3:a:arm:mbed_tls:1.3.20
  • Arm » Mbed Tls » Version: 1.3.21
    cpe:2.3:a:arm:mbed_tls:1.3.21
  • Arm » Mbed Tls » Version: 1.3.8
    cpe:2.3:a:arm:mbed_tls:1.3.8
  • Arm » Mbed Tls » Version: 1.3.9
    cpe:2.3:a:arm:mbed_tls:1.3.9
  • Arm » Mbed Tls » Version: 2.1.0
    cpe:2.3:a:arm:mbed_tls:2.1.0
  • Arm » Mbed Tls » Version: 2.1.1
    cpe:2.3:a:arm:mbed_tls:2.1.1
  • Arm » Mbed Tls » Version: 2.1.2
    cpe:2.3:a:arm:mbed_tls:2.1.2
  • Arm » Mbed Tls » Version: 2.1.3
    cpe:2.3:a:arm:mbed_tls:2.1.3
  • Arm » Mbed Tls » Version: 2.1.4
    cpe:2.3:a:arm:mbed_tls:2.1.4
  • Arm » Mbed Tls » Version: 2.1.5
    cpe:2.3:a:arm:mbed_tls:2.1.5
  • Arm » Mbed Tls » Version: 2.1.6
    cpe:2.3:a:arm:mbed_tls:2.1.6
  • Arm » Mbed Tls » Version: 2.1.7
    cpe:2.3:a:arm:mbed_tls:2.1.7
  • Arm » Mbed Tls » Version: 2.1.8
    cpe:2.3:a:arm:mbed_tls:2.1.8
  • Arm » Mbed Tls » Version: 2.1.9
    cpe:2.3:a:arm:mbed_tls:2.1.9
  • Arm » Mbed Tls » Version: 2.2.0
    cpe:2.3:a:arm:mbed_tls:2.2.0
  • Arm » Mbed Tls » Version: 2.2.1
    cpe:2.3:a:arm:mbed_tls:2.2.1
  • Arm » Mbed Tls » Version: 2.2.2
    cpe:2.3:a:arm:mbed_tls:2.2.2
  • Arm » Mbed Tls » Version: 2.2.3
    cpe:2.3:a:arm:mbed_tls:2.2.3
  • Arm » Mbed Tls » Version: 2.3.0
    cpe:2.3:a:arm:mbed_tls:2.3.0
  • Arm » Mbed Tls » Version: 2.3.1
    cpe:2.3:a:arm:mbed_tls:2.3.1
  • Arm » Mbed Tls » Version: 2.3.2
    cpe:2.3:a:arm:mbed_tls:2.3.2
  • Arm » Mbed Tls » Version: 2.4.0
    cpe:2.3:a:arm:mbed_tls:2.4.0
  • Arm » Mbed Tls » Version: 2.4.1
    cpe:2.3:a:arm:mbed_tls:2.4.1
  • Arm » Mbed Tls » Version: 2.4.2
    cpe:2.3:a:arm:mbed_tls:2.4.2
  • Arm » Mbed Tls » Version: 2.5.0
    cpe:2.3:a:arm:mbed_tls:2.5.0
  • Arm » Mbed Tls » Version: 2.5.1
    cpe:2.3:a:arm:mbed_tls:2.5.1
  • Arm » Mbed Tls » Version: 2.6.0
    cpe:2.3:a:arm:mbed_tls:2.6.0
  • Arm » Mbed Tls » Version: 2.6.1
    cpe:2.3:a:arm:mbed_tls:2.6.1
  • Debian » Debian Linux » Version: 8.0
    cpe:2.3:o:debian:debian_linux:8.0
  • Debian » Debian Linux » Version: 9.0
    cpe:2.3:o:debian:debian_linux:9.0


Products
Pricing
Contact Us

Shodan ® - All rights reserved