Описание
Null pointer dereference in coap_dtls_info_callback() in OISM libcoap 4.3.5 allows remote attackers to cause a denial of service via a DTLS handshake where SSL_get_app_data() returns NULL.
Ссылки
- Issue Tracking
- Issue Tracking
Уязвимые конфигурации
Конфигурация 1
cpe:2.3:a:libcoap:libcoap:4.3.5:-:*:*:*:*:*:*
EPSS
Процентиль: 34%
0.00139
Низкий
4.3 Medium
CVSS3
Дефекты
CWE-476
Связанные уязвимости
CVSS3: 4.3
ubuntu
3 месяца назад
Null pointer dereference in coap_dtls_info_callback() in OISM libcoap 4.3.5 allows remote attackers to cause a denial of service via a DTLS handshake where SSL_get_app_data() returns NULL.
CVSS3: 4.3
debian
3 месяца назад
Null pointer dereference in coap_dtls_info_callback() in OISM libcoap ...
CVSS3: 4.3
github
2 месяца назад
Null pointer dereference in coap_dtls_info_callback() in OISM libcoap 4.3.5 allows remote attackers to cause a denial of service via a DTLS handshake where SSL_get_app_data() returns NULL.
EPSS
Процентиль: 34%
0.00139
Низкий
4.3 Medium
CVSS3
Дефекты
CWE-476