CVE-2018-0487Improper Restriction of Operations within the Bounds of a Memory Buffer in ARM Mbed TLS

CWE-119Improper Restriction of Operations within the Bounds of a Memory Buffer10 documents7 sources
Severity
9.8CRITICALNVD
EPSS
5.1%
top 10.14%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
3
Mbed MbedtlsARM Mbed TLSDebian Linux
Timeline
PublishedFeb 13
Latest updateMay 13

Description

ARM mbed TLS before 1.3.22, before 2.1.10, and before 2.7.0 allows remote attackers to execute arbitrary code or cause a denial of service (buffer overflow) via a crafted certificate chain that is mishandled during RSASSA-PSS signature verification within a TLS or DTLS session.

CVSS vector

CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:HExploitability: 3.9 | Impact: 5.9

Affected Packages3 packages

NVDarm/mbed_tls1.3.81.3.22+2
Debianmbed/mbedtls< 2.7.0-2+3
Ubuntumbed/mbedtls< 2.2.1-2ubuntu0.3

Also affects: Debian Linux 8.0, 9.0

🔴Vulnerability Details

4
GHSA
GHSA-83xw-9x6g-hh74: ARM mbed TLS before 12022-05-13
OSV
mbedtls vulnerabilities2020-02-05
CVEList
CVE-2018-0487: ARM mbed TLS before 12018-02-13
OSV
CVE-2018-0487: ARM mbed TLS before 12018-02-13

📋Vendor Advisories

2
Ubuntu
ARM mbed TLS vulnerabilities2020-02-05
Debian
CVE-2018-0487: mbedtls - ARM mbed TLS before 1.3.22, before 2.1.10, and before 2.7.0 allows remote attack...2018

💬Community

3
Bugzilla
CVE-2017-18187 CVE-2018-0487 CVE-2018-0488 mbedtls: various flaws [epel-all]2018-02-13
Bugzilla
CVE-2018-0487 mbedtls: Risk of remote code execution when verifying RSASSA-PSS signatures2018-02-13
Bugzilla
CVE-2017-18187 CVE-2018-0487 CVE-2018-0488 mbedtls: various flaws [fedora-all]2018-02-13
CVE-2018-0487 — ARM Mbed TLS vulnerability | cvebase