Vulnerabilities in cryptographic libraries found through modern fuzzing

13 January 2023

Recently patched vulnerabilities in MatrixSSL and wolfSSL, two open-source TLS/SSL implementations / libraries for embedded environments, have emphasized the great potential of using fuzzing to uncover security holes in implementations of cryptographic protocols. CVE-2022-43974 and CVE-2022-42905 CVE-2022-43974 is a buffer overflow vulnerability found in MatrixSSL versions 4.5.1-4.0.0 that could allow information disclosure and remote code execution.

Read full article on Help Net Security

Date:

13 January 2023

Categorie(s):

NEWS

Tag(s):

Deutsche Telekom, Security Pro, SSL/TLS, Trail of Bits, Vulnerability

Major Oilfield Supplier Hit by Ransomware Attack8 November 2024
The vCISO Academy: Transforming MSPs and MSSPs into Cybersecurity Powerhouses8 November 2024
Webinar: Learn How Storytelling Can Make Cybersecurity Training Fun and Effective8 November 2024
US consumer protection agency bans employee mobile calls amid Chinese hack fears8 November 2024
What if robots learned the same way genAI chatbots do?8 November 2024