CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

SUSE CVE•added 2025/11/25 12:23 a.m.•3 views

SUSE CVE-2025-65499

Array index error in tlsverifycallback in src/coapopenssl.c in OISM libcoap 4.3.5 allows remote attackers to cause a denial of service via a crafted DTLS handshake that triggers SSLgetexdataX509STORECTXidx to return -1...

4.3CVSS6.8AI score0.00142EPSS

EUVD•added 2025/11/24 3:30 p.m.•1 views

EUVD-2025-198712

NULL pointer dereference in coapdtlsgeneratecookie in src/coapopenssl.c in OISM libcoap 4.3.5 allows remote attackers to cause a denial of service via a crafted DTLS handshake that triggers SSLgetSSLCTX to return NULL...

4.3CVSS6.1AI score0.00143EPSS

EUVD•added 2025/11/24 3:30 p.m.•2 views

EUVD-2025-198715

7.5CVSS6.1AI score0.00152EPSS

EUVD•added 2025/11/24 3:30 p.m.•1 views

EUVD-2025-198716

NULL pointer dereference in src/coapopenssl.c in OISM libcoap 4.3.5 allows remote attackers to cause a denial of service via a crafted DTLS/TLS connection that triggers BIOgetdata to return NULL...

7.5CVSS6.1AI score0.0023EPSS

4.3CVSS5.3AI score0.00143EPSS

DEBIAN-CVE-2025-65498

Exploits0References1

NVD•added 2025/11/24 2:15 p.m.•1 views

CVE-2025-65493

NULL pointer dereference in src/coapopenssl.c in OISM libcoap 4.3.5 allows remote attackers to cause a denial of service via a crafted DTLS/TLS connection that triggers BIOgetdata to return NULL...

7.5CVSS0.0023EPSS

Exploits0References2

CVE-2025-65493

NULL pointer dereference in src/coapopenssl.c in OISM libcoap 4.3.5 allows remote attackers to cause a denial of service via a crafted DTLS/TLS connection that triggers BIOgetdata to return NULL...

7.5CVSS6.6AI score

Exploits0References2

7.5CVSS5.3AI score0.0023EPSS

DEBIAN-CVE-2025-65493

NULL pointer dereference in src/coapopenssl.c in OISM libcoap 4.3.5 allows remote attackers to cause a denial of service via a crafted DTLS/TLS connection that triggers BIOgetdata to return NULL...

Exploits0References1

4.3CVSS5.8AI score0.00143EPSS

UBUNTU-CVE-2025-65496

OSV•added 2025/11/24 2:15 p.m.•2 views

UBUNTU-CVE-2025-65493

NULL pointer dereference in src/coapopenssl.c in OISM libcoap 4.3.5 allows remote attackers to cause a denial of service via a crafted DTLS/TLS connection that triggers BIOgetdata to return NULL...

7.5CVSS5.8AI score0.0023EPSS

7.5CVSS5.8AI score0.00152EPSS

UBUNTU-CVE-2025-65494

OSV•added 2025/11/24 2:15 p.m.•3 views

UBUNTU-CVE-2025-65495

Integer signedness error in tlsverifycallback in src/coapopenssl.c in OISM libcoap 4.3.5 allows remote attackers to cause a denial of service via a crafted TLS certificate that causes i2dX509 to return -1 and be misused as a malloc size parameter...

7.5CVSS5.8AI score0.00154EPSS

Debian CVE•added 2025/11/24 12:0 a.m.•5 views

CVE-2025-65495

7.5CVSS5.3AI score0.00154EPSS

Exploits0

Vulnrichment•added 2025/11/24 12:0 a.m.•1 views

CVE-2025-65496

6.3AI score0.00143EPSS

Exploits0References2

Tenable Nessus•added 2025/11/24 12:0 a.m.•3 views

Linux Distros Unpatched Vulnerability : CVE-2025-65496

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - NULL pointer dereference in coapdtlsgeneratecookie in src/coapopenssl.c in OISM libcoap 4.3.5 allows remote attackers to cause a denial of service via a crafted...

4.3CVSS5.8AI score0.00143EPSS

CNNVD•added 2025/11/24 12:0 a.m.•2 views

libcoap 安全漏洞

libcoap is a C implementation of a lightweight application protocol open-sourced by obgm. A security vulnerability exists in libcoap version 4.3.5, which stems from a null pointer dereference in the coapdtlsgeneratecookie function in src/coapopenssl.c, which could lead to a denial of service atta...

4.3CVSS6.2AI score0.00143EPSS

Positive Technologies•added 2025/11/24 12:0 a.m.•1 views

PT-2025-47908

NULL pointer dereference in get san or cn from cert in src/coap openssl.c in OISM libcoap 4.3.5 allows remote attackers to cause a denial of service via a crafted X.509 certificate that causes sk GENERAL NAME value to return NULL...

7.5CVSS6.7AI score0.00152EPSS