Описание
In Eclipse Wakaama (formerly liblwm2m) 1.0, core/er-coap-13/er-coap-13.c in lwm2mserver in the LWM2M server mishandles invalid options, leading to a memory leak. Processing of a single crafted packet leads to leaking (wasting) 24 bytes of memory. This can lead to termination of the LWM2M server after exhausting all available memory.
Ссылки
- ExploitIssue TrackingPatchThird Party Advisory
- ExploitIssue TrackingPatchThird Party Advisory
Уязвимые конфигурации
Конфигурация 1
cpe:2.3:a:eclipse:wakaama:1.0:*:*:*:*:*:*:*
EPSS
Процентиль: 57%
0.00349
Низкий
7.5 High
CVSS3
5 Medium
CVSS2
Дефекты
CWE-401
Связанные уязвимости
CVSS3: 7.5
github
больше 3 лет назад
In Eclipse Wakaama (formerly liblwm2m) 1.0, core/er-coap-13/er-coap-13.c in lwm2mserver in the LWM2M server mishandles invalid options, leading to a memory leak. Processing of a single crafted packet leads to leaking (wasting) 24 bytes of memory. This can lead to termination of the LWM2M server after exhausting all available memory.
EPSS
Процентиль: 57%
0.00349
Низкий
7.5 High
CVSS3
5 Medium
CVSS2
Дефекты
CWE-401