CVE-2018-16870

EPSS 1.6%CWE-200

It was found that wolfssl before 3.15.7 is vulnerable to a new variant of the Bleichenbacher attack to perform downgrade attacks against TLS. This may lead to leakage of sensible data.

Affected products

n/a · wolfssl

Want to know if your infrastructure is exposed to this?

Talk to TrueHacking →

References

http://cat.eyalro.net/https://github.com/wolfSSL/wolfssl/pull/1950