Shodan
Vulnerabilities
Vulnerable Software

Vulnerability Details CVE-2024-30166

In Mbed TLS 3.3.0 through 3.5.2 before 3.6.0, a malicious client can cause information disclosure or a denial of service because of a stack buffer over-read (of less than 256 bytes) in a TLS 1.3 server via a TLS 3.1 ClientHello.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.004
EPSS Ranking 56.9%
CVSS Severity
CVSS v3 Score 9.1
Products affected by CVE-2024-30166
  • Arm » Mbed Tls » Version: 3.3.0
    cpe:2.3:a:arm:mbed_tls:3.3.0
  • Arm » Mbed Tls » Version: 3.4.0
    cpe:2.3:a:arm:mbed_tls:3.4.0
  • Arm » Mbed Tls » Version: 3.4.1
    cpe:2.3:a:arm:mbed_tls:3.4.1
  • Arm » Mbed Tls » Version: 3.5.0
    cpe:2.3:a:arm:mbed_tls:3.5.0
  • Arm » Mbed Tls » Version: 3.5.1
    cpe:2.3:a:arm:mbed_tls:3.5.1
  • Arm » Mbed Tls » Version: 3.5.2
    cpe:2.3:a:arm:mbed_tls:3.5.2


Products
Pricing
Contact Us

Shodan ® - All rights reserved