Lucene search
K

5 matches found

RedhatCVE
RedhatCVE
added 2025/05/23 3:22 a.m.8 views

CVE-2023-24823

RIOT-OS, an operating system that supports Internet of Things devices, contains a network stack with the ability to process 6LoWPAN frames. Prior to version 2022.10, an attacker can send a crafted frame to the device resulting in a type confusion between IPv6 extension headers and a UDP header...

9.8CVSS7.7AI score0.00985EPSS
Exploits0References1
NVD
NVD
added 2023/04/24 4:15 p.m.22 views

CVE-2023-24823

RIOT-OS, an operating system that supports Internet of Things devices, contains a network stack with the ability to process 6LoWPAN frames. Prior to version 2022.10, an attacker can send a crafted frame to the device resulting in a type confusion between IPv6 extension headers and a UDP header...

9.8CVSS9.7AI score0.00985EPSS
Exploits0References3
CVE
CVE
added 2023/04/24 3:27 p.m.39 views

CVE-2023-24823

RIOT-OS vulnerability CVE-2023-24823 involves a type confusion in the 6LoWPAN IPHC encoding where IPv6 extension headers can be mistaken for a UDP header. Before version 2022.10, this leads to an out-of-bounds write in the packet buffer, which can corrupt other packets and allocator metadata, pot...

9.8CVSS9.8AI score0.00985EPSS
Exploits0References3Affected Software1
Cvelist
Cvelist
added 2023/04/24 3:27 p.m.32 views

CVE-2023-24823 RIOT-OS vulnerable to Packet Type Confusion during IPHC send

RIOT-OS, an operating system that supports Internet of Things devices, contains a network stack with the ability to process 6LoWPAN frames. Prior to version 2022.10, an attacker can send a crafted frame to the device resulting in a type confusion between IPv6 extension headers and a UDP header...

9.8CVSS9.8AI score0.00985EPSS
Exploits0References3
Vulnrichment
Vulnrichment
added 2023/04/24 3:27 p.m.8 views

CVE-2023-24823 RIOT-OS vulnerable to Packet Type Confusion during IPHC send

RIOT-OS, an operating system that supports Internet of Things devices, contains a network stack with the ability to process 6LoWPAN frames. Prior to version 2022.10, an attacker can send a crafted frame to the device resulting in a type confusion between IPv6 extension headers and a UDP header...

9.8CVSS7.7AI score0.00985EPSS
Exploits0References3
Rows per page
Query Builder