CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

658 matches found

AstraLinux•added 2026/05/03 11:59 p.m.•8 views

Astra Linux - уязвимость в open-iscsi

An issue was discovered in Contiki through 3.0. An Integer Overflow exists in the uIP TCP/IP Stack component when parsing TCP MSS options of IPv4 network packets in uipprocess in net/ipv4/uip.c...

7.5CVSS7AI score0.00192EPSS

Exploits0References2

AstraLinux•added 2026/05/03 11:59 p.m.•7 views

Astra Linux - уязвимость в open-iscsi

An issue was discovered in Contiki through 3.0. An Out-of-Bounds Read vulnerability exists in the uIP TCP/IP Stack component when calculating the checksums for IP packets in upperlayerchksum in net/ipv4/uip.c...

7.5CVSS7AI score0.00142EPSS

Exploits0References2

RedhatCVE•added 2026/01/09 11:25 a.m.•0 views

CVE-2021-28362

An issue was discovered in Contiki through 3.0. When sending an ICMPv6 error message because of invalid extension header options in an incoming IPv6 packet, there is an attempt to remove the RPL extension headers. Because the packet length and the extension header length are unchecked with respec...

7.5CVSS7.1AI score0.0035EPSS

Exploits0References1

RedhatCVE•added 2026/01/09 9:57 a.m.•6 views

CVE-2020-12141

An out-of-bounds read in the SNMP stack in Contiki-NG 4.4 and earlier allows an attacker to cause a denial of service and potentially disclose information via crafted SNMP packets to snmpberdecodestringlenbuffer in os/net/app-layer/snmp/snmp-ber.c...

9.1CVSS6.7AI score0.00495EPSS

Exploits0References1

RedhatCVE•added 2026/01/09 9:55 a.m.•5 views

CVE-2020-12140

A buffer overflow in os/net/mac/ble/ble-l2cap.c in the BLE stack in Contiki-NG 4.4 and earlier allows an attacker to execute arbitrary code via malicious L2CAP frames...

8.8CVSS8.3AI score0.0011EPSS

Exploits0References1

RedhatCVE•added 2026/01/09 9:50 a.m.•1 views

CVE-2020-24335

An issue was discovered in uIP through 1.0, as used in Contiki and Contiki-NG. Domain name parsing lacks bounds checks, allowing an attacker to corrupt memory with crafted DNS packets...

7.5CVSS7AI score0.02087EPSS

Exploits0References1

RedhatCVE•added 2026/01/09 9:0 a.m.•5 views

CVE-2023-50926

Contiki-NG is an open-source, cross-platform operating system for Next-Generation IoT devices. An out-of-bounds read can be caused by an incoming DIO message when using the RPL-Lite implementation in the Contiki-NG operating system. More specifically, the prefix information of the DIO message...

7.5CVSS6.5AI score0.00343EPSS

Exploits0References1

RedhatCVE•added 2026/01/09 8:59 a.m.•5 views

CVE-2023-50927

Contiki-NG is an open-source, cross-platform operating system for Next-Generation IoT devices. An attacker can trigger out-of-bounds reads in the RPL-Lite implementation of the RPL protocol in the Contiki-NG operating system. This vulnerability is caused by insufficient control of the lengths for...

8.6CVSS7AI score0.00319EPSS

Exploits0References1

RedhatCVE•added 2026/01/09 8:34 a.m.•5 views

CVE-2024-41125

Contiki-NG is an open-source, cross-platform operating system for IoT devices. An out-of-bounds read of 1 byte can be triggered when sending a packet to a device running the Contiki-NG operating system with SNMP enabled. The SNMP module is disabled in the default Contiki-NG configuration. The...

9.6CVSS6.8AI score0.00091EPSS

Exploits0References1

RedhatCVE•added 2026/01/09 8:34 a.m.•1 views

CVE-2024-41126

9.6CVSS7.1AI score0.00091EPSS

Exploits0References1