all InfoSec news
Keeping the wolves out of wolfSSL
Malware Analysis, News and Indicators - Latest topics malware.news
By Max Ammann
Trail of Bits is publicly disclosing four vulnerabilities that affect wolfSSL: CVE-2022-38152, CVE-2022-38153, CVE-2022-39173, and CVE-2022-42905. The four issues, which have CVSS scores ranging from medium to critical, can all result in a denial of service (DoS). These vulnerabilities have been discovered automatically using the novel protocol fuzzer tlspuffin. This blog post will explore these vulnerabilities, then provide an in-depth overview of the fuzzer.
tlspuffin is a fuzzer inspired by formal protocol …
bits blog blog post critical cve cvss cvss scores denial of service dos fuzzer medium novel protocol result service trail of bits vulnerabilities wolfssl