Vulnerability Description
wolfSSL 4.0.0 has a Buffer Overflow in DoPreSharedKeys in tls13.c when a current identity size is greater than a client identity size. An attacker sends a crafted hello client packet over the network to a TLSv1.3 wolfSSL server. The length fields of the packet: record length, client hello length, total extensions length, PSK extension length, total identity length, and identity length contain their maximum value which is 2^16. The identity data field of the PSK extension of the packet contains the attack data, to be stored in the undefined memory (RAM) of the server. The size of the data is about 65 kB. Possibly the attacker can perform a remote code execution attack.
CVSS Score
CRITICAL
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Wolfssl | Wolfssl | 4.0 |
Related Weaknesses (CWE)
References
- http://www.securityfocus.com/bid/108466Broken Link
- https://www.telekom.com/en/corporate-responsibility/data-protection-data-securitThird Party Advisory
- https://www.telekom.com/resource/blob/572524/1c89c1cbaccdf792153063b3a10af10e/dlPatchThird Party Advisory
- http://www.securityfocus.com/bid/108466Broken Link
- https://www.telekom.com/en/corporate-responsibility/data-protection-data-securitThird Party Advisory
- https://www.telekom.com/resource/blob/572524/1c89c1cbaccdf792153063b3a10af10e/dlPatchThird Party Advisory
FAQ
What is CVE-2019-11873?
CVE-2019-11873 is a vulnerability with a CVSS score of 9.8 (CRITICAL). wolfSSL 4.0.0 has a Buffer Overflow in DoPreSharedKeys in tls13.c when a current identity size is greater than a client identity size. An attacker sends a crafted hello client packet over the network ...
How severe is CVE-2019-11873?
CVE-2019-11873 has been rated CRITICAL with a CVSS base score of 9.8/10. This is considered a critical vulnerability requiring immediate attention.
Is there a patch for CVE-2019-11873?
Check the references section above for vendor advisories and patch information. Affected products include: Wolfssl Wolfssl.