Описание
Contiki-NG before 4.2 has a stack-based buffer overflow in the push function in os/lib/json/jsonparse.c that allows an out-of-bounds write of an '{' or '[' character.
Ссылки
- MitigationThird Party Advisory
- MitigationThird Party Advisory
Уязвимые конфигурации
Конфигурация 1
cpe:2.3:o:contiki-ng_project:contiki-ng:4.2:*:*:*:*:*:*:*
EPSS
Процентиль: 18%
0.00057
Низкий
7.1 High
CVSS3
3.6 Low
CVSS2
Дефекты
CWE-787
Связанные уязвимости
CVSS3: 7.1
github
больше 3 лет назад
Contiki-NG before 4.2 has a stack-based buffer overflow in the push function in os/lib/json/jsonparse.c that allows an out-of-bounds write of an '{' or '[' character.
EPSS
Процентиль: 18%
0.00057
Низкий
7.1 High
CVSS3
3.6 Low
CVSS2
Дефекты
CWE-787