Lucene search
K

68 matches found

NVD
NVD
added 2026/06/29 9:16 a.m.9 views

CVE-2026-9267

Eclipse tinydtls before commit b3efd41ad111a4920f599f51ffa4f5e9f1e72221 contains an out-of-bounds read vulnerability in the checkservercertificate function that allows unauthenticated attackers to trigger reads beyond valid buffer boundaries by crafting a Certificate handshake message with a...

6.9CVSS0.00173EPSS
Exploits0References1
CVE
CVE
added 2026/06/29 8:10 a.m.14 views

CVE-2026-9267

CVE-2026-9267 affects Eclipse tinydtls prior to commit b3efd41ad111a4920f599f51ffa4f5e9f1e72221. The issue is an out-of-bounds read in the check_server_certificate() function during DTLS epoch 0 where a Certificate handshake message with a crafted fragment_length can trigger reads beyond buffer b...

6.9CVSS6AI score0.00173EPSS
Exploits0References1
ATTACKERKB
ATTACKERKB
added 2026/06/29 8:10 a.m.7 views

CVE-2026-9267

Eclipse tinydtls before commit b3efd41ad111a4920f599f51ffa4f5e9f1e72221 contains an out-of-bounds read vulnerability in the checkservercertificate function that allows unauthenticated attackers to trigger reads beyond valid buffer boundaries by crafting a Certificate handshake message with a...

6.9CVSS6AI score0.00173EPSS
Exploits0References2
Cvelist
Cvelist
added 2026/06/29 8:10 a.m.37 views

CVE-2026-9267

Eclipse tinydtls before commit b3efd41ad111a4920f599f51ffa4f5e9f1e72221 contains an out-of-bounds read vulnerability in the checkservercertificate function that allows unauthenticated attackers to trigger reads beyond valid buffer boundaries by crafting a Certificate handshake message with a...

6.9CVSS0.00173EPSS
Exploits0References1
EUVD
EUVD
added 2026/06/29 8:10 a.m.10 views

EUVD-2026-40054

Eclipse tinydtls before commit b3efd41ad111a4920f599f51ffa4f5e9f1e72221 contains an out-of-bounds read vulnerability in the checkservercertificate function that allows unauthenticated attackers to trigger reads beyond valid buffer boundaries by crafting a Certificate handshake message with a...

6.9CVSS6AI score0.00173EPSS
Exploits0References1
EUVD
EUVD
added 2025/10/07 12:30 a.m.6 views

EUVD-2021-21086

Malware in sbrugna...

7.5CVSS7.6AI score0.01045EPSS
Exploits1References2
EUVD
EUVD
added 2025/10/03 8:7 p.m.5 views

EUVD-2021-29124

Malicious code in bioql PyPI...

9.8CVSS9.2AI score0.01181EPSS
Exploits0References3
EUVD
EUVD
added 2025/10/03 8:7 p.m.6 views

EUVD-2021-29125

Malicious code in bioql PyPI...

9.8CVSS9.2AI score0.00989EPSS
Exploits0References4
RedhatCVE
RedhatCVE
added 2025/05/22 9:34 p.m.8 views

CVE-2021-34430

Eclipse TinyDTLS through 0.9-rc1 relies on the rand function in the C library, which makes it easier for remote attackers to compute the master key and then decrypt DTLS traffic...

7.5CVSS7AI score0.01045EPSS
Exploits1References1
RedhatCVE
RedhatCVE
added 2025/05/22 9:6 p.m.8 views

CVE-2021-42141

An issue was discovered in Contiki-NG tinyDTLS through 2018-08-30. One incorrect handshake could complete with different epoch numbers in the packets ClientHello, Clientkeyexchange, and Changecipherspec, which may cause denial of service...

9.8CVSS6.9AI score0.01181EPSS
Exploits0
RedhatCVE
RedhatCVE
added 2025/05/22 9:5 p.m.8 views

CVE-2021-42142

An issue was discovered in Contiki-NG tinyDTLS through master branch 53a0d97. DTLS servers mishandle the early use of a large epoch number. This vulnerability allows remote attackers to cause a denial of service and false-positive packet drops...

9.8CVSS6.9AI score0.00989EPSS
Exploits0
NVD
NVD
added 2024/01/24 7:15 p.m.20 views

CVE-2021-42146

An issue was discovered in Contiki-NG tinyDTLS through master branch 53a0d97. DTLS servers allow remote attackers to reuse the same epoch number within two times the TCP maximum segment lifetime, which is prohibited in RFC6347. This vulnerability allows remote attackers to obtain sensitive...

7.5CVSS7.4AI score0.00662EPSS
Exploits0References2
NVD
NVD
added 2024/01/24 7:15 p.m.14 views

CVE-2021-42147

Buffer over-read vulnerability in the dtlssha256update function in Contiki-NG tinyDTLS through master branch 53a0d97 allows remote attackers to cause a denial of service via crafted data packet...

9.1CVSS8.9AI score0.00836EPSS
Exploits0References2
OSV
OSV
added 2024/01/24 7:15 p.m.5 views

CVE-2021-42147

Buffer over-read vulnerability in the dtlssha256update function in Contiki-NG tinyDTLS through master branch 53a0d97 allows remote attackers to cause a denial of service via crafted data packet...

9.1CVSS5.8AI score
Exploits0References2
Prion
Prion
added 2024/01/24 7:15 p.m.22 views

Buffer overflow

Buffer over-read vulnerability in the dtlssha256update function in Contiki-NG tinyDTLS through master branch 53a0d97 allows remote attackers to cause a denial of service via crafted data packet...

6.4CVSS7.2AI score0.00836EPSS
Exploits0References1Affected Software1
Prion
Prion
added 2024/01/24 7:15 p.m.20 views

Code injection

An issue was discovered in Contiki-NG tinyDTLS through master branch 53a0d97. DTLS servers allow remote attackers to reuse the same epoch number within two times the TCP maximum segment lifetime, which is prohibited in RFC6347. This vulnerability allows remote attackers to obtain sensitive...

5CVSS7AI score0.00662EPSS
Exploits0References1Affected Software1
OSV
OSV
added 2024/01/24 6:15 p.m.4 views

CVE-2021-42144

Buffer over-read vulnerability in Contiki-NG tinyDTLS through master branch 53a0d97 allows attackers obtain sensitive information via crafted input to dtlsccmdecryptmessage...

9.8CVSS5.8AI score
Exploits0References2
OSV
OSV
added 2024/01/24 6:15 p.m.5 views

CVE-2021-42143

An issue was discovered in Contiki-NG tinyDTLS through master branch 53a0d97. An infinite loop bug exists during the handling of a ClientHello handshake message. This bug allows remote attackers to cause a denial of service by sending a malformed ClientHello handshake message with an odd length o...

9.1CVSS6AI score0.00812EPSS
Exploits0References2
NVD
NVD
added 2024/01/24 6:15 p.m.22 views

CVE-2021-42144

Buffer over-read vulnerability in Contiki-NG tinyDTLS through master branch 53a0d97 allows attackers obtain sensitive information via crafted input to dtlsccmdecryptmessage...

9.8CVSS9.2AI score0.00658EPSS
Exploits0References2
Prion
Prion
added 2024/01/24 6:15 p.m.22 views

Design/Logic Flaw

An issue was discovered in Contiki-NG tinyDTLS through master branch 53a0d97. An infinite loop bug exists during the handling of a ClientHello handshake message. This bug allows remote attackers to cause a denial of service by sending a malformed ClientHello handshake message with an odd length o...

6.4CVSS7.4AI score0.00812EPSS
Exploits0References1Affected Software1
Rows per page
Query Builder