CVE-2018-1000061

ARM mbedTLS version development branch, 2.7.0 and earlier contains a CWE-670, Incorrect condition control flow leading to incorrect return, leading to

CVE-2018-1000045
CVE-2019-6132 باگ سرریز حافظه در Bento4
CVE-20 19-5311 باگ امنیتی در YUNUCMS V1.1.8

ARM mbedTLS version development branch, 2.7.0 and earlier contains a CWE-670, Incorrect condition control flow leading to incorrect return, leading to data loss vulnerability in ssl_write_real(), library/ssl_tls.c:7142 that can result in Leads to data loss, can be escalated to DoS and authorization bypass in application protocols. This attack appear to be exploitable via network connectivity. (CVSS:7.5) (Last Update:2018-03-08)

COMMENTS