CVE-2021-42141

2024-01-2200:00:00

mitre

www.cve.org

contiki-ng

tinydtls

incorrect handshake

denial of service

AI Score

9.4

Confidence

High

EPSS

0.001

Percentile

45.9%

JSON

An issue was discovered in Contiki-NG tinyDTLS through 2018-08-30. One incorrect handshake could complete with different epoch numbers in the packets Client_Hello, Client_key_exchange, and Change_cipher_spec, which may cause denial of service.

References

packetstormsecurity.com/files/176625/Contiki-NG-tinyDTLS-Denial-Of-Service.html

github.com/contiki-ng/tinydtls/issues/27

seclists.org/fulldisclosure/2024/Jan/14