7 matches found
EUVD-2022-38789
Malicious code in bioql PyPI...
CVE-2022-35927
Contiki-NG is an open-source, cross-platform operating system for IoT devices. In the RPL-Classic routing protocol implementation in the Contiki-NG operating system, an incoming DODAG Information Option DIO control message can contain a prefix information option with a length parameter. The value...
CVE-2023-50927 Insufficient boundary checks for DIO and DAO messages in RPL-Lite in Contiki-NG
Contiki-NG is an open-source, cross-platform operating system for Next-Generation IoT devices. An attacker can trigger out-of-bounds reads in the RPL-Lite implementation of the RPL protocol in the Contiki-NG operating system. This vulnerability is caused by insufficient control of the lengths for...
CVE-2022-35927 Unverified DIO prefix info lengths in RPL-Classic in Contiki-NG
Contiki-NG is an open-source, cross-platform operating system for IoT devices. In the RPL-Classic routing protocol implementation in the Contiki-NG operating system, an incoming DODAG Information Option DIO control message can contain a prefix information option with a length parameter. The value...
CVE-2022-35927 Unverified DIO prefix info lengths in RPL-Classic in Contiki-NG
Contiki-NG is an open-source, cross-platform operating system for IoT devices. In the RPL-Classic routing protocol implementation in the Contiki-NG operating system, an incoming DODAG Information Option DIO control message can contain a prefix information option with a length parameter. The value...
PT-2022-23033 · Unknown · Contiki-Ng
Name of the Vulnerable Software and Affected Versions: Contiki-NG versions prior to 4.7 Description: The issue is related to the RPL-Classic routing protocol implementation in the Contiki-NG operating system. Specifically, an incoming DODAG Information Option DIO control message can contain a...
Contiki-NG 安全漏洞
Contiki-NG is an open source cross-platform operating system for next-generation IoT Internet of Things devices. A security vulnerability exists in Contiki-NG versions prior to 4.7, which stems from an unvalidated value of the incoming DODAG Information Option DIO control message length parameter...