Lucene search

GitHub_MCVELIST:CVE-2023-34101

HistoryJun 14, 2023 - 2:50 p.m.

CVE-2023-34101 Contiki-NG vulnerable to out-of-bounds read when processing ICMP DAO input

2023-06-1414:50:21

CWE-125

GitHub_M

www.cve.org

contiki-ng

out-of-bounds read

icmp dao.

CVSS3

7.3

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

LOW

Integrity Impact

LOW

Availability Impact

LOW

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:L

AI Score

9.4

Confidence

High

EPSS

0.001

Percentile

47.8%

JSON

Contiki-NG is an operating system for internet of things devices. In version 4.8 and prior, when processing ICMP DAO packets in the dao_input_storing function, the Contiki-NG OS does not verify that the packet buffer is big enough to contain the bytes it needs before accessing them. Up to 16 bytes can be read out of bounds in the dao_input_storing function. An attacker can truncate an ICMP packet so that it does not contain enough data, leading to an out-of-bounds read on these lines. The problem has been patched in the “develop” branch of Contiki-NG, and is expected to be included in release 4.9. As a workaround, one can apply the changes in Contiki-NG pull request #2435 to patch the system.

CNA Affected

[
  {
    "vendor": "contiki-ng",
    "product": "contiki-ng",
    "versions": [
      {
        "version": "<= 4.8",
        "status": "affected"
      }
    ]
  }
]

References

github.com/contiki-ng/contiki-ng/pull/2435

github.com/contiki-ng/contiki-ng/security/advisories/GHSA-fp66-ff6x-7w2w

CVSS3

7.3

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

LOW

Integrity Impact

LOW

Availability Impact

LOW

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:L

AI Score

9.4

Confidence

High

EPSS

0.001

Percentile

47.8%

JSON

Related for CVELIST:CVE-2023-34101