CVE-2024-58254

Rejected reason: DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: CVE-2024-11738. Reason: This candidate is a duplicate of CVE-2024-11738. Notes: All CVE users should reference CVE-2024-11738 instead of this candidate. All references and descriptions in this candidate have been removed to prevent accidental usage.

CVSS

No CVSS.

References

No reference.

Configurations

No configuration.

History

05 Jul 2025, 04:15

Type	Values Removed	Values Added
References	~~{'url': 'https://crates.io/crates/rustls', 'source': 'cve@mitre.org'}~~ ~~{'url': 'https://github.com/rustls/rustls/issues/2227', 'source': 'cve@mitre.org'}~~ ~~{'url': 'https://rustsec.org/advisories/RUSTSEC-2024-0399.html', 'source': 'cve@mitre.org'}~~
CVSS	v2 : ~~unknown~~ v3 : ~~5.3~~	v2 : unknown v3 : unknown
CWE	~~CWE-684~~
Summary	~~(en) The rustls crate 0.23.13 before 0.23.18 for Rust, when rustls::server::Acceptor::accept is used, allows a panic via a fragmented TLS ClientHello.~~	(en) Rejected reason: DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: CVE-2024-11738. Reason: This candidate is a duplicate of CVE-2024-11738. Notes: All CVE users should reference CVE-2024-11738 instead of this candidate. All references and descriptions in this candidate have been removed to prevent accidental usage.

05 Jul 2025, 02:15

Type	Values Removed	Values Added
New CVE

Information

Published : 2025-07-05 02:15

Updated : 2025-07-05 04:15

NVD link : CVE-2024-58254

Mitre link : CVE-2024-58254

CVE.ORG link : CVE-2024-58254

JSON object : View

Products Affected

No product.

CWE

No CWE.

JSON object

Attach tags to CVE-2024-58254

Attach tags to `CVE-2024-58254`