Amazon Web Services Freertos Security Vulnerabilities and Issues — Amazon Web Services Freertos CVE List

Lucene search

AmazonAmazon Web Services Freertos

7 matches found

CVE•added 2018/12/06 11:29 p.m.•55 views

CVE-2018-16527

Amazon Web Services (AWS) FreeRTOS through 1.3.1, FreeRTOS up to V10.0.1 (with FreeRTOS+TCP), and WITTENSTEIN WHIS Connect middleware TCP/IP component allow information disclosure during parsing of ICMP packets in prvProcessICMPPacket.

5.9CVSS5.5AI score0.00453EPSS

CVE•added 2018/12/06 11:29 p.m.•39 views

CVE-2018-16598

An issue was discovered in Amazon Web Services (AWS) FreeRTOS through 1.3.1, FreeRTOS up to V10.0.1 (with FreeRTOS+TCP), and WITTENSTEIN WHIS Connect middleware TCP/IP component. In xProcessReceivedUDPPacket and prvParseDNSReply, any received DNS response is accepted, without confirming it matches ...

5.9CVSS5.6AI score0.00284EPSS

CVE•added 2018/12/06 11:29 p.m.•39 views

CVE-2018-16600

An issue was discovered in Amazon Web Services (AWS) FreeRTOS through 1.3.1, FreeRTOS up to V10.0.1 (with FreeRTOS+TCP), and WITTENSTEIN WHIS Connect middleware TCP/IP component. Out of bounds memory access during parsing of ARP packets in eARPProcessPacket can be used for information disclosure.

5.9CVSS5.4AI score0.00453EPSS

CVE•added 2018/12/06 11:29 p.m.•38 views

CVE-2018-16599

An issue was discovered in Amazon Web Services (AWS) FreeRTOS through 1.3.1, FreeRTOS up to V10.0.1 (with FreeRTOS+TCP), and WITTENSTEIN WHIS Connect middleware TCP/IP component. Out of bounds memory access during parsing of NBNS packets in prvTreatNBNS can be used for information disclosure.

5.9CVSS5.4AI score0.00453EPSS

CVE•added 2018/12/06 11:29 p.m.•36 views

CVE-2018-16524

5.9CVSS5.5AI score0.00453EPSS

CVE•added 2018/12/06 11:29 p.m.•36 views

CVE-2018-16602

An issue was discovered in Amazon Web Services (AWS) FreeRTOS through 1.3.1, FreeRTOS up to V10.0.1 (with FreeRTOS+TCP), and WITTENSTEIN WHIS Connect middleware TCP/IP component. Out of bounds memory access during parsing of DHCP responses in prvProcessDHCPReplies can be used for information disclo...

5.9CVSS5.4AI score0.00453EPSS

CVE•added 2018/12/06 11:29 p.m.•33 views

CVE-2018-16603

An issue was discovered in Amazon Web Services (AWS) FreeRTOS through 1.3.1, FreeRTOS up to V10.0.1 (with FreeRTOS+TCP), and WITTENSTEIN WHIS Connect middleware TCP/IP component. Out of bounds access to TCP source and destination port fields in xProcessReceivedTCPPacket can leak data back to an att...

5.9CVSS5.6AI score0.00453EPSS