Show filters
1 Total Results
Displaying 1-1 of 1
Sort by:
Attacker Value
Unknown

CVE-2020-36476

Disclosure Date: August 23, 2021 (last updated October 07, 2023)
An issue was discovered in Mbed TLS before 2.24.0 (and before 2.16.8 LTS and before 2.7.17 LTS). There is missing zeroization of plaintext buffers in mbedtls_ssl_read to erase unused application data from memory.
Attack Vector: NetworkPrivileges: NoneUser Interaction: None
0
0