Vulnerabilities > CVE-2021-43666

047910
CVSS 7.5 - HIGH
Attack vector
NETWORK
Attack complexity
LOW
Privileges required
NONE
Confidentiality impact
NONE
Integrity impact
NONE
Availability impact
HIGH
network
low complexity
arm
debian
NVD
Published: 2022-03-24
Updated: 2023-07-20

Summary

A Denial of Service vulnerability exists in mbed TLS 3.0.0 and earlier in the mbedtls_pkcs12_derivation function when an input password's length is 0.

Vulnerable Configurations

Part Description Count
Application
Arm
156
OS
Debian
1

References