Krzysztof Stachowiak

2 exploits Active since Apr 2018
CVE-2018-9988 WRITEUP HIGH WRITEUP
ARM Mbed TLS < 2.1.11 - Out-of-Bounds Read
ARM mbed TLS before 2.1.11, before 2.7.2, and before 2.8.0 has a buffer over-read in ssl_parse_server_key_exchange() that could cause a crash on invalid input.
CVSS 7.5
CVE-2018-9989 WRITEUP HIGH WRITEUP
ARM Mbed TLS < 2.1.11 - Out-of-Bounds Read
ARM mbed TLS before 2.1.11, before 2.7.2, and before 2.8.0 has a buffer over-read in ssl_parse_server_psk_hint() that could cause a crash on invalid input.
CVSS 7.5