Iluxonchik

**Name of the Vulnerable Software and Affected Versions** mbedTLS version 2.7.0 and earlier **Description** The issue allows incorrectly signed certificates, specifically accepting ECDSA-signed certificates when only RSA-signed ones should be accepted. This can occur when peers negotiate a TLS-ECDH-RSA-* ciphersuite, and any peer can provide an ECDSA-signed certificate. The `mbedtls ssl get verify result()` function is involved in this issue. **Recommendations** For mbedTLS version 2.7.0 and earlier, consider updating to a version that fixes this issue, as the current version may accept incorrectly signed certificates. At the moment, there is no information about a newer version that contains a fix for this vulnerability.