Arm Mbed TLS before 2.14.1, before 2.7.8, and before 2.1.17 allows a local unprivileged attacker to recover the plaintext of RSA decryption, which is used in RSA-without-(EC)DH(E) cipher suites.
The product does not properly assign, modify, track, or check privileges for an actor, creating an unintended sphere of control for that actor.
Name | Vendor | Start Version | End Version |
---|---|---|---|
Mbed_tls | Arm | 2.1.0 (including) | 2.1.17 (excluding) |
Mbed_tls | Arm | 2.7.0 (including) | 2.7.8 (excluding) |
Mbed_tls | Arm | 2.14.0 (including) | 2.14.1 (excluding) |
Mbedtls | Ubuntu | bionic | * |
Mbedtls | Ubuntu | trusty | * |
Mbedtls | Ubuntu | upstream | * |
Mbedtls | Ubuntu | xenial | * |
Polarssl | Ubuntu | trusty | * |