VDB
CVE-2019-11873
CVE-2019-11873
PUBLISHED
wolfSSL 4.0.0 has a Buffer Overflow in DoPreSharedKeys in tls13.c when a current identity size is greater than a client identity size. An attacker sends a crafted hello client packet over the network to a TLSv1.3 wolfSSL server. The length fields of the packet: record length, client hello length, total extensions length, PSK extension length, total identity length, and identity length contain their maximum value which is 2^16. The identity data field of the PSK extension of the packet contains the attack data, to be stored in the undefined memory (RAM) of the server. The size of the data is about 65 kB. Possibly the attacker can perform a remote code execution attack.
EPSS 6.33% · 91.2th percentile
Risk Scores
EPSS Score
6.33%
91.2th percentile
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Ubuntu:18.04:LTS | wolfssl | 3.10.2+dfsg-2, 3.12.2+dfsg-1, 3.13.0+dfsg-1 |
| Ubuntu:16.04:LTS | wolfssl | 0, * |
Exploit Intelligence
Timeline
- May 23, 2019 CVE Published
- Apr 14, 2021 EPSS Score
- Jun 23, 2021 EPSS Score
- Oct 26, 2021 EPSS Score
- Dec 27, 2021 EPSS Score
- Feb 4, 2022 EPSS Score
- Feb 28, 2022 EPSS Score
- May 1, 2022 EPSS Score
- Jul 3, 2022 EPSS Score
- Nov 6, 2022 EPSS Score
- Jan 8, 2023 EPSS Score
- Mar 11, 2023 EPSS Score
References
- https://ubuntu.com/security/CVE-2019-11873 third-party-advisory
- https://www.telekom.com/en/corporate-responsibility/data-protection-data-security/security/details/advisories-504842 third-party-advisory
- https://www.telekom.com/resource/blob/572524/1c89c1cbaccdf792153063b3a10af10e/dl-190515-remote-buffer-overflow-vulnerability-wolfssl-library-data.pdf third-party-advisory
- https://www.cve.org/CVERecord?id=CVE-2019-11873 third-party-advisory