3 matches found
CVE-2022-41972
Contiki-NG is an open-source, cross-platform operating system for Next-Generation IoT devices. Versions prior to 4.9 contain a NULL Pointer Dereference in BLE L2CAP module. The Contiki-NG operating system for IoT devices contains a Bluetooth Low Energy stack. An attacker can inject a packet in th...
CVE-2022-41972 Contiki-NG contains NULL Pointer Dereference in BLE L2CAP module
Contiki-NG is an open-source, cross-platform operating system for Next-Generation IoT devices. Versions prior to 4.9 contain a NULL Pointer Dereference in BLE L2CAP module. The Contiki-NG operating system for IoT devices contains a Bluetooth Low Energy stack. An attacker can inject a packet in th...
CVE-2022-41972
Contiki-NG before 4.9 is affected by a NULL pointer dereference in the BLE L2CAP module. The vulnerability occurs when processing L2CAP packets: input_l2cap_credit does not verify that the metadata for the user-supplied channel ID exists, potentially dereferencing NULL. Impact is undefined behavi...