CVE-2022-35409

Name of the Vulnerable Software and Affected Versions Mbed TLS versions prior to 2.28.1 Mbed TLS versions 3.x prior to 3.2.0

Description An issue was discovered in Mbed TLS where an unauthenticated attacker can send an invalid ClientHello message to a DTLS server, causing a heap-based buffer over-read of up to 255 bytes. This can cause a server crash or possibly information disclosure based on error responses. Affected configurations have MBEDTLS SSL DTLS CLIENT PORT REUSE enabled and MBEDTLS SSL IN CONTENT LEN less than a threshold that depends on the configuration.

Recommendations For Mbed TLS versions prior to 2.28.1, update to version 2.28.1 or later. For Mbed TLS versions 3.x prior to 3.2.0, update to version 3.2.0 or later. As a temporary workaround, consider disabling the MBEDTLS SSL DTLS CLIENT PORT REUSE feature until a patch is available. Restrict access to the DTLS server to minimize the risk of exploitation.