CVE-2022-46505
Description
An issue in MatrixSSL 4.5.1-open and earlier leads to failure to securely check the SessionID field, resulting in the misuse of an all-zero MasterSecret that can decrypt secret data.
References
ExploitThird Party Advisory
Permissions RequiredVendor Advisory
CvssV3 impact
Could not find any metrics
CvssV2 impact
Could not find any metrics