Security Advisory

CVE-2023-39908

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2023-08-14 00:00:00

Last updated 2024-10-09 15:05:26

Assigner mitre

State PUBLISHED

Description

The PKCS11 module of the YubiHSM 2 SDK through 2023.01 does not properly validate the length of specific read operations on object metadata. This may lead to disclosure of uninitialized and previously used memory.

← Browse all CVEs View on cve.org ↗