CVE-2024-40493

Опубликовано: 22 окт. 2024

Источник: nvd

CVSS3: 9.8

CVSS3: 5.3

EPSS Низкий

Описание

Null Pointer Dereference in coap_client_exchange_blockwise2 function in Keith Cullen FreeCoAP 1.0 allows remote attackers to cause a denial of service and potentially execute arbitrary code via a specially crafted CoAP packet that causes coap_msg_get_payload(resp) to return a null pointer, which is then dereferenced in a call to memcpy.

Ссылки

https://gist.github.com/dqp10515/fe80005e2fb58ed8ada178ac017e4ad4
Third Party Advisory
https://github.com/keith-cullen/FreeCoAP/issues/37
Exploit
Issue Tracking

Уязвимые конфигурации

Конфигурация 1

cpe:2.3:a:keith-cullen:freecoap:1.0:*:*:*:*:*:*:*

EPSS

Процентиль: 78%

0.01162

Низкий

9.8 Critical

CVSS3

5.3 Medium

CVSS3

Дефекты

CWE-476

Связанные уязвимости

GHSA-cr59-3vcq-rrw6

CVSS3: 5.3

github

больше 1 года назад

Null Pointer Dereference in `coap_client_exchange_blockwise2` function in Keith Cullen FreeCoAP 1.0 allows remote attackers to cause a denial of service and potentially execute arbitrary code via a specially crafted CoAP packet that causes `coap_msg_get_payload(resp)` to return a null pointer, which is then dereferenced in a call to `memcpy`.

EPSS

Процентиль: 78%

0.01162

Низкий

9.8 Critical

CVSS3

5.3 Medium

CVSS3

Дефекты

CWE-476