CVE-2022-46393
published 2022-12-15CVE-2022-46393: An issue was discovered in Mbed TLS before 2.28.2 and 3.x before 3.3.0. There is a potential heap-based buffer overflow and heap-based buffer over-read in DTLS…
PriorityP342critical9.8CVSS 3.1
AVNACLPRNUINSUCHIHAH
EPSS
1.15%
62.8th percentile
An issue was discovered in Mbed TLS before 2.28.2 and 3.x before 3.3.0. There is a potential heap-based buffer overflow and heap-based buffer over-read in DTLS if MBEDTLS_SSL_DTLS_CONNECTION_ID is enabled and MBEDTLS_SSL_CID_IN_LEN_MAX > 2 * MBEDTLS_SSL_CID_OUT_LEN_MAX.
Affected
8 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| arm | mbed_tls | < 2.28.2 | 2.28.2 |
| debian | mbedtls | < mbedtls 2.28.2-1 (bookworm) | mbedtls 2.28.2-1 (bookworm) |
| fedoraproject | fedora | — | — |
| fedoraproject | fedora | — | — |
| mbed | mbedtls | >= 0 < 2.28.2-1 | 2.28.2-1 |
| mbed | mbedtls | >= 0 < 2.28.2-1 | 2.28.2-1 |
| mbed | mbedtls | >= 0 < 2.28.2-1 | 2.28.2-1 |
| trustedfirmware | mbed_tls | >= 3.0.0 < 3.3.0 | 3.3.0 |
CVSS provenance
nvdv3.19.8CRITICALCVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
osv9.8CRITICAL
vendor_debian9.8CRITICAL
Stop checking back — get the weekly exploitation signal.
Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.
VulDB
mbed TLS up to 2.28.1/3.2.x DTLS heap-based overflow (FEDORA-2023-7456a62f60)
vuldb·2026-06-06·CVSS 9.8
CVE-2022-46393 [CRITICAL] mbed TLS up to 2.28.1/3.2.x DTLS heap-based overflow (FEDORA-2023-7456a62f60)
A vulnerability was found in mbed TLS up to 2.28.1/3.2.x and classified as critical. This issue affects some unknown processing of the component DTLS. Such manipulation leads to heap-based buffer overflow.
This vulnerability is uniquely identified as CVE-2022-46393. The attack can be launched remotely. No exploit exists.
It is suggested to upgrade the affected component.
GHSA
GHSA-pjwj-r3p9-jjrq: An issue was discovered in Mbed TLS before 2
ghsa_unreviewed·2022-12-16
CVE-2022-46393 [CRITICAL] CWE-125 GHSA-pjwj-r3p9-jjrq: An issue was discovered in Mbed TLS before 2
An issue was discovered in Mbed TLS before 2.28.2 and 3.x before 3.3.0. There is a potential heap-based buffer overflow and heap-based buffer over-read in DTLS if MBEDTLS_SSL_DTLS_CONNECTION_ID is enabled and MBEDTLS_SSL_CID_IN_LEN_MAX > 2 * MBEDTLS_SSL_CID_OUT_LEN_MAX.
OSV
CVE-2022-46393: An issue was discovered in Mbed TLS before 2
osv·2022-12-15·CVSS 9.8
CVE-2022-46393 [CRITICAL] CVE-2022-46393: An issue was discovered in Mbed TLS before 2
An issue was discovered in Mbed TLS before 2.28.2 and 3.x before 3.3.0. There is a potential heap-based buffer overflow and heap-based buffer over-read in DTLS if MBEDTLS_SSL_DTLS_CONNECTION_ID is enabled and MBEDTLS_SSL_CID_IN_LEN_MAX > 2 * MBEDTLS_SSL_CID_OUT_LEN_MAX.
CISA ICS
Siemens SCALANCE XCM-/XRM-300
cisa_ics·2024-02-15
Siemens SCALANCE XCM-/XRM-300
ICS Advisory
##
Siemens SCALANCE XCM-/XRM-300
Release DateFebruary 15, 2024
Alert CodeICSA-24-046-11
As of January 10, 2023, CISA will no longer be updating ICS security advisories for Siemens product vulnerabilities beyond the initial advisory. For the most up-to-date information on vulnerabilities in this advisory, please see Siemens' ProductCERT Security Advisories (CERT Services | Services | Siemens Global).
View CSAF
## 1. EXECUTIVE SUMMARY
- CVSS v3 9.8
- ATTENTION: Exploitable remotely/low attack complexity
- Vendor: Siemens
- Equipment: SCALANCE XCM-/XRM-300
- Vulnerabilities: Out-of-bounds Write, Incorrect Type Conversion or Cast, Improper Verification of Cryptographic Signature, Improper Access Control, Improper Authentication, Missing Encryption
Debian
CVE-2022-46393: mbedtls - An issue was discovered in Mbed TLS before 2.28.2 and 3.x before 3.3.0. There is...
vendor_debian·2022·CVSS 9.8
CVE-2022-46393 [CRITICAL] CVE-2022-46393: mbedtls - An issue was discovered in Mbed TLS before 2.28.2 and 3.x before 3.3.0. There is...
An issue was discovered in Mbed TLS before 2.28.2 and 3.x before 3.3.0. There is a potential heap-based buffer overflow and heap-based buffer over-read in DTLS if MBEDTLS_SSL_DTLS_CONNECTION_ID is enabled and MBEDTLS_SSL_CID_IN_LEN_MAX > 2 * MBEDTLS_SSL_CID_OUT_LEN_MAX.
Scope: local
bookworm: resolved (fixed in 2.28.2-1)
bullseye: resolved
forky: resolved (fixed in 2.28.2-1)
sid: resolved (fixed in 2.28.2-1)
trixie: resolved (fixed in 2.28.2-1)
No detection rules found.
No public exploits indexed.
No writeups or analysis indexed.
https://github.com/Mbed-TLS/mbedtls/releases/tag/v2.28.2https://github.com/Mbed-TLS/mbedtls/releases/tag/v3.3.0https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/4BR7ZCVKLPGCOEEALUHZMFHXQHR6S4QL/https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/6XMKJ5IMJEPXYAHHU56Z4P2FSYIEAESB/https://mbed-tls.readthedocs.io/en/latest/tech-updates/security-advisories/https://github.com/Mbed-TLS/mbedtls/releases/tag/v2.28.2https://github.com/Mbed-TLS/mbedtls/releases/tag/v3.3.0https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/4BR7ZCVKLPGCOEEALUHZMFHXQHR6S4QL/https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/6XMKJ5IMJEPXYAHHU56Z4P2FSYIEAESB/https://mbed-tls.readthedocs.io/en/latest/tech-updates/security-advisories/
2022-12-15
Published