CVE-2024-1545

NVD Published Date: August 29, 2024 at 11:15 PM
NVD Last Modified: September 04, 2024 at 02:27 PM
Download Patch
Vulnerability ID
CVE-2024-1545
Severity
HIGH
Severity Score
8.8
Summary
Fault Injection vulnerability in RsaPrivateDecryption function in wolfssl/wolfcrypt/src/rsa.c in WolfSSL wolfssl5.6.6 on Linux/Windows allows remote attacker co-resides in the same system with a victim process to disclose information and escalate privileges via Rowhammer fault injection to the RsaKey structure.
Mitigation and Patches
-
Exploits
-
Metasploit Payload
-
Vector
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
CWE ID
CWE-74

Recent Publish

CVE-2024-1543

CVE-2024-2881

CVE-2024-8234

CVE-2024-45488

CVE-2024-8330

CVE-2024-8329

See SecOps Solution
in action

Schedule Demo