Описание
Buffer over-read vulnerability in the dtls_sha256_update function in Contiki-NG tinyDTLS through master branch 53a0d97 allows remote attackers to cause a denial of service via crafted data packet.
Ссылки
- Mailing ListThird Party Advisory
- Mailing ListThird Party Advisory
Уязвимые конфигурации
Конфигурация 1
cpe:2.3:a:contiki-ng:tinydtls:2018-08-30:*:*:*:*:*:*:*
EPSS
Процентиль: 57%
0.00354
Низкий
9.1 Critical
CVSS3
Дефекты
CWE-125
CWE-125
Связанные уязвимости
CVSS3: 9.1
github
около 2 лет назад
Buffer over-read vulnerability in the dtls_sha256_update function in Contiki-NG tinyDTLS through master branch 53a0d97 allows remote attackers to cause a denial of service via crafted data packet.
EPSS
Процентиль: 57%
0.00354
Низкий
9.1 Critical
CVSS3
Дефекты
CWE-125
CWE-125