CVE-2018-0487

Description

ARM mbed TLS before 1.3.22, before 2.1.10, and before 2.7.0 allows remote attackers to execute arbitrary code or cause a denial of service (buffer overflow) via a crafted certificate chain that is mishandled during RSASSA-PSS signature verification within a TLS or DTLS session.

References

Link	Tags
https://www.debian.org/security/2018/dsa-4147	third party advisory vendor advisory
https://www.debian.org/security/2018/dsa-4138	third party advisory vendor advisory
https://tls.mbed.org/tech-updates/security-advisories/mbedtls-security-advisory-2018-01	mitigation vendor advisory
http://www.securityfocus.com/bid/103056	third party advisory vdb entry
https://security.gentoo.org/glsa/201804-19	third party advisory vendor advisory
https://usn.ubuntu.com/4267-1/	vendor advisory

Frequently Asked Questions

What is the severity of CVE-2018-0487?: CVE-2018-0487 has been scored as a critical severity vulnerability.
How to fix CVE-2018-0487?: To fix CVE-2018-0487, make sure you are using an up-to-date version of the affected component(s) by checking the vendor release notes. As for now, there are no other specific guidelines available.
Is CVE-2018-0487 being actively exploited in the wild?: It is possible that CVE-2018-0487 is being exploited or will be exploited in a near future based on public information. According to its EPSS score, there is a ~7% probability that this vulnerability will be exploited by malicious actors in the next 30 days.
What software or system is affected by CVE-2018-0487?: CVE-2018-0487 affects n/a ARM mbed TLS before 1.3.22, before 2.1.10, and before 2.7.0.

Description

Category

CWE-119 – Improper Restriction of Operations within the Bounds of a Memory Buffer

References

Frequently Asked Questions