CVE-2017-2784
HIGHARM mbed TLS < 1.3.19, 2.x < 2.1.7, 2.4.x < 2.4.2 - Remote Code Execution via X.509 Certificate Parsing
Title source: llmDescription
An exploitable free of a stack pointer vulnerability exists in the x509 certificate parsing code of ARM mbed TLS before 1.3.19, 2.x before 2.1.7, and 2.4.x before 2.4.2. A specially crafted x509 certificate, when parsed by mbed TLS library, can cause an invalid free of a stack pointer leading to a potential remote code execution. In order to exploit this vulnerability, an attacker can act as either a client or a server on a network to deliver malicious x509 certificates to vulnerable applications.
References (3)
Core 3
Core References
Third Party Advisory vendor-advisory
x_refsource_gentoo
https://security.gentoo.org/glsa/201706-18
Exploit, Technical Description, Third Party Advisory, VDB Entry x_refsource_misc
http://www.talosintelligence.com/reports/TALOS-2017-0274/
Mitigation, Vendor Advisory x_refsource_confirm
https://tls.mbed.org/tech-updates/security-advisories/mbedtls-security-advisory-2017-01
Scores
CVSS v3
8.1
EPSS
0.0312
EPSS Percentile
87.0%
Attack Vector
NETWORK
CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H
Details
CWE
CWE-295
Status
published
Products (11)
ARM/mbed TLS
2.4.0
arm/mbed_tls
2.0.0
arm/mbed_tls
2.1.0
arm/mbed_tls
2.1.1
arm/mbed_tls
2.1.2
arm/mbed_tls
2.1.3
arm/mbed_tls
2.1.4
arm/mbed_tls
2.1.5
arm/mbed_tls
2.1.6
arm/mbed_tls
2.4.0
... and 1 more
Published
Apr 20, 2017
Tracked Since
Feb 18, 2026