CVSS 3.1 Score 9.8 of 10 (high)


Published Oct 7, 2023
Updated: Oct 12, 2023
CWE ID 120


CVE-2023-45199, also known as Mbed TLS Buffer Overflow, is a critical vulnerability affecting Mbed TLS versions 3.2.x through 3.4.x before version 3.5. It has a CVSS score of 9.8 and poses a high risk to organizations. The vulnerability allows for remote code execution and can be exploited over the network without requiring any user interaction or privileges. It has a low attack complexity, but the impact on integrity and confidentiality is high. The affected products are nXwejE and pQF4Wy. To remediate this vulnerability, organizations should update their Mbed TLS installations to version 3.5 or later as soon as possible to mitigate the risk of exploitation and potential damage to their systems and data.

Explore Beyond the CVE Basics with Recorded Future's Vulnerability Intelligence

Note: This is just a basic overview providing quick insights into CVE-2023-45199 information. Gain full access to comprehensive CVE data, risk scores, prioritization, and mitigation data through Recorded Future's Vulnerability Intelligence:
  • Prioritize with Risk-Based Scoring
  • Explore the Extensive Vulnerability Database
  • Receive Early Alerts on Emerging CVEs
  • Focus on Critical Exploitable Vulnerabilities
  • Streamline Remediation with Integration Options