Mbed TLS Insufficient Protection of Serialized Data Leading to Memory Corruption Vulnerability

A vulnerability exists in Mbed TLS versions 2.19.0 prior to 3.6.5 and in Mbed TLS 4.0.0. The issue arises from inadequate protection of serialized SSL context or session structures, allowing an attacker to modify these structures and induce memory corruption. This could lead to arbitrary code execution. The vulnerability is caused by the incorrect use of privileged APIs.

Impact

Exploitation of this vulnerability could result in memory safety violations, such as out-of-bounds reads or writes, potentially causing crashes or compromising the integrity of the application or server.

Remediation

Users should review their use of TLS session or context serialization and ensure that serialized data is protected against unauthorized access and modification. Recommended measures include storing serialized TLS state only in trusted storage, using cryptographic integrity protection for serialized data, and validating storage integrity before restoring serialized TLS sessions or contexts.