4 matches found
CVE-2022-35926
Contiki-NG is an open-source, cross-platform operating system for IoT devices. Because of insufficient validation of IPv6 neighbor discovery options in Contiki-NG, attackers can send neighbor solicitation packets that trigger an out-of-bounds read. The problem exists in the module...
CVE-2022-35926
creationtimestamp| type| source ---|---|--- 2022-08-05 00:19:52+00:00| seen| https://t.me/cibsecurity/47591...
CVE-2022-35926
CVE-2022-35926 affects Contiki-NG and is caused by insufficient validation of IPv6 neighbor discovery options in os/net/ipv6/uip-nd6.c, leading to an out-of-bounds read on the main packet buffer (uip_buf) when reading the 2-byte option header and the Source Link-Layer Address Option (SLLAO). The ...
CVE-2022-35926 Out-of-bounds read in IPv6 neighbor solicitation in Contiki-NG
Contiki-NG is an open-source, cross-platform operating system for IoT devices. Because of insufficient validation of IPv6 neighbor discovery options in Contiki-NG, attackers can send neighbor solicitation packets that trigger an out-of-bounds read. The problem exists in the module...