CVE-2025-59391

A memory disclosure vulnerability exists in libcoap's OSCORE configuration parser in libcoap before release-4.3.5-patches. An out-of-bounds read may occur when parsing certain configuration values, allowing an attacker to infer or read memory beyond string boundaries in the .rodata section. This...

CVE-2025-59391

A memory disclosure vulnerability exists in libcoap's OSCORE configuration parser in libcoap before release-4.3.5-patches. An out-of-bounds read may occur when parsing certain configuration values, allowing an attacker to infer or read memory beyond string boundaries in the .rodata section. This...

CVE-2025-65500

NULL pointer dereference in coapdtlsgeneratecookie in src/coapopenssl.c in OISM libcoap 4.3.5 allows remote attackers to cause a denial of service via a crafted DTLS handshake that triggers SSLgetSSLCTX to return NULL...

UBUNTU-CVE-2025-65495

Integer signedness error in tlsverifycallback in src/coapopenssl.c in OISM libcoap 4.3.5 allows remote attackers to cause a denial of service via a crafted TLS certificate that causes i2dX509 to return -1 and be misused as a malloc size parameter...

PT-2025-47907

Name of the Vulnerable Software and Affected Versions libcoap version 4.3.5 Description A flaw exists in libcoap where a NULL pointer dereference in src/coap openssl.c can lead to a denial of service. This occurs when a crafted DTLS/TLS connection triggers the BIO get data function to return NULL...

EUVD-2023-34783

Malicious code in bioql PyPI...

Linux Distros Unpatched Vulnerability : CVE-2025-50518

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - A use-after-free vulnerability exists in the coapdeletepdulkd function within coappdu.c of the libcoap library. This issue occurs due to improper handling of...

SUSE CVE-2025-50518

A use-after-free vulnerability exists in the coapdeletepdulkd function within coappdu.c of the libcoap library. This issue occurs due to improper handling of memory after the freeing of a PDU object, leading to potential memory corruption or the possibility of executing arbitrary code. NOTE: this...

CVE-2025-50518

CVE-2025-50518 affects libcoap: use-after-free in the function coap_delete_pdu_lkd (in coap_pdu.c). Root cause: improper handling of memory after freeing a PDU object, leading to memory corruption and potential arbitrary code execution. Reported impact is severe (CVSSv3.1 base score 9.8, CRITICAL...

CVE-2025-50518

A use-after-free vulnerability exists in the coapdeletepdulkd function within coappdu.c of the libcoap library. This issue occurs due to improper handling of memory after the freeing of a PDU object, leading to potential memory corruption or the possibility of executing arbitrary code. NOTE: this...

CVE-2025-50518

A use-after-free vulnerability exists in the coapdeletepdulkd function within coappdu.c of the libcoap library. This issue occurs due to improper handling of memory after the freeing of a PDU object, leading to potential memory corruption or the possibility of executing arbitrary code. NOTE: this...

Linux Distros Unpatched Vulnerability : CVE-2023-30362

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Buffer Overflow vulnerability in coapsend function in libcoap library 4.3.1-103-g52cfd56 fixed in 4.3.1-120-ge242200 allows attackers to obtain sensitive...

DEBIAN-CVE-2024-0962

A vulnerability was found in obgm libcoap 4.3.4. It has been rated as critical. Affected by this issue is the function getsplitentry of the file src/coaposcore.c of the component Configuration File Handler. The manipulation leads to stack-based buffer overflow. The attack may be launched remotely...

OESA-2023-1701 dsoftbus security update

Security Fixes: Buffer Overflow vulnerability in coapsend function in libcoap library 4.3.1-103-g52cfd56 fixed in 4.3.1-120-ge242200 allows attackers to obtain sensitive information via malformed pdu.CVE-2023-30362...

CVE-2023-30362

Buffer Overflow vulnerability in coapsend function in libcoap library 4.3.1-103-g52cfd56 fixed in 4.3.1-120-ge242200 allows attackers to obtain sensitive information via malformed pdu...

UBUNTU-CVE-2023-30362

Buffer Overflow vulnerability in coapsend function in libcoap library 4.3.1-103-g52cfd56 fixed in 4.3.1-120-ge242200 allows attackers to obtain sensitive information via malformed pdu...

CVE-2023-30362

Buffer Overflow vulnerability in coapsend function in libcoap library 4.3.1-103-g52cfd56 fixed in 4.3.1-120-ge242200 allows attackers to obtain sensitive information via malformed pdu...

CVE-2023-30362

The CVE-2023-30362 vulnerability affects the libcoap library, specifically the coap_send function in version 4.3.1-103-g52cfd56. A Buffer Overflow in this function allows attackers to obtain sensitive information via malformed PDUs. The issue is fixed in version 4.3.1-120-ge242200. Several adviso...

PT-2023-22653 · Libcoap +1 · Libcoap +1

Name of the Vulnerable Software and Affected Versions: libcoap library versions 4.3.1-103-g52cfd56 through 4.3.1-119 Description: The issue is related to a Buffer Overflow vulnerability in the coap send function. This vulnerability allows attackers to obtain sensitive information via a malformed...

CVE-2023-30362

Buffer Overflow vulnerability in coapsend function in libcoap library 4.3.1-103-g52cfd56 fixed in 4.3.1-120-ge242200 allows attackers to obtain sensitive information via malformed pdu...