Lucene search
K

7 matches found

OSV
OSV
added 2018/12/06 11:29 p.m.21 views

CVE-2018-16602

An issue was discovered in Amazon Web Services AWS FreeRTOS through 1.3.1, FreeRTOS up to V10.0.1 with FreeRTOS+TCP, and WITTENSTEIN WHIS Connect middleware TCP/IP component. Out of bounds memory access during parsing of DHCP responses in prvProcessDHCPReplies can be used for information disclosu...

5.9CVSS6.5AI score
Exploits0References3
OSV
OSV
added 2018/12/06 11:29 p.m.25 views

CVE-2018-16601

An issue was discovered in Amazon Web Services AWS FreeRTOS through 1.3.1, FreeRTOS up to V10.0.1 with FreeRTOS+TCP, and WITTENSTEIN WHIS Connect middleware TCP/IP component. A crafted IP header triggers a full memory space copy in prvProcessIPPacket, leading to denial of service and possibly...

8.1CVSS7.7AI score
Exploits0References3
Prion
Prion
added 2018/12/06 11:29 p.m.22 views

Out-of-bounds

An issue was discovered in Amazon Web Services AWS FreeRTOS through 1.3.1, FreeRTOS up to V10.0.1 with FreeRTOS+TCP, and WITTENSTEIN WHIS Connect middleware TCP/IP component. Out of bounds access to TCP source and destination port fields in xProcessReceivedTCPPacket can leak data back to an...

4.3CVSS5.7AI score0.01814EPSS
Exploits1References3Affected Software2
Prion
Prion
added 2018/12/06 11:29 p.m.18 views

Information disclosure

An issue was discovered in Amazon Web Services AWS FreeRTOS through 1.3.1, FreeRTOS up to V10.0.1 with FreeRTOS+TCP, and WITTENSTEIN WHIS Connect middleware TCP/IP component. Out of bounds memory access during parsing of ARP packets in eARPProcessPacket can be used for information disclosure...

4.3CVSS5.5AI score0.01829EPSS
Exploits1References3Affected Software2
CVE
CVE
added 2018/12/06 11:0 p.m.73 views

CVE-2018-16523

The CVE-2018-16523 issue affects AWS FreeRTOS up to v1.3.1 and FreeRTOS up to v10.0.1 (with FreeRTOS+TCP) and the WHIS Connect TCP/IP module, caused by a division by zero in prvCheckOptions within the TCP/IP stack. ThreatPost and related sources confirm the vulnerability exists in the FreeRTOS TC...

7.4CVSS7.3AI score0.02056EPSS
Exploits1References3Affected Software2
CVE
CVE
added 2018/12/06 11:0 p.m.69 views

CVE-2018-16527

The CVE-2018-16527 issue affects AWS FreeRTOS up to v1.3.1 (and FreeRTOS up to v10.0.1 with FreeRTOS+TCP) and WHIS Connect middleware; it is an information disclosure vulnerability in prvProcessICMPPacket during ICMP packet parsing. The underlying cause is in the TCP/IP stack and associated conne...

5.9CVSS5.5AI score0.0185EPSS
Exploits1References3Affected Software2
Cvelist
Cvelist
added 2018/12/06 11:0 p.m.26 views

CVE-2018-16601

An issue was discovered in Amazon Web Services AWS FreeRTOS through 1.3.1, FreeRTOS up to V10.0.1 with FreeRTOS+TCP, and WITTENSTEIN WHIS Connect middleware TCP/IP component. A crafted IP header triggers a full memory space copy in prvProcessIPPacket, leading to denial of service and possibly...

8.3AI score0.04161EPSS
Exploits1References3
Rows per page
Query Builder