CVE-2022-43974

Published January 9th, 2023

View on NVD ↗

CVSS v3

8.1

HIGH

CVSS v2

N/A

Affected

PROJECT

Description

MatrixSSL 4.0.4 through 4.5.1 has an integer overflow in matrixSslDecodeTls13. A remote attacker might be able to send a crafted TLS Message to cause a buffer overflow and achieve remote code execution. This is fixed in 4.6.0.

matrixssl/matrixsslUNAVAILABLE

Lightweight Embedded SSL/TLS Implementation for IoT Devices

GitHub