3 matches found
CVE-2022-41873
Contiki-NG prior to 4.9 is affected by an out-of-bounds read/write in the BLE L2CAP path. An integer truncation in get_channel_for_cid allows a crafted channel ID to bypass the bounds check on channel IDs, enabling attacker-controlled data to be read/written out-of-bounds. The issue has been patc...
CVE-2022-41873 Out-of-bounds read and write in BLE L2CAP module
Contiki-NG is an open-source, cross-platform operating system for Next-Generation IoT devices. Versions prior to 4.9 are vulnerable to an Out-of-bounds read. While processing the L2CAP protocol, the Bluetooth Low Energy stack of Contiki-NG needs to map an incoming channel ID to its metadata...
CVE-2022-41873 Out-of-bounds read and write in BLE L2CAP module
Contiki-NG is an open-source, cross-platform operating system for Next-Generation IoT devices. Versions prior to 4.9 are vulnerable to an Out-of-bounds read. While processing the L2CAP protocol, the Bluetooth Low Energy stack of Contiki-NG needs to map an incoming channel ID to its metadata...