CVE-2019-10914

Published
View on NVD ↗
CVSS v3
N/A
CVSS v2
7.5
HIGH
Affected
1
PROJECT

Description

pubRsaDecryptSignedElementExt in MatrixSSL 4.0.1 Open, as used in Inside Secure TLS Toolkit, has a stack-based buffer overflow during X.509 certificate verification because of missing validation in psRsaDecryptPubExt in crypto/pubkey/rsa_pub.c.

matrixssl/matrixssl
matrixssl/matrixsslUNAVAILABLE
Lightweight Embedded SSL/TLS Implementation for IoT Devices
GitHubGitHub