Contiki Security Vulnerabilities and Issues — Contiki CVE List

Lucene search

Contiki-osContiki

4 matches found

CVE•added 2020/12/11 11:15 p.m.•137 views

CVE-2020-24336

An issue was discovered in Contiki through 3.0 and Contiki-NG through 4.5. The code for parsing Type A domain name answers in ip64-dns64.c doesn't verify whether the address in the answer's length is sane. Therefore, when copying an address of an arbitrary length, a buffer overflow can occur. This ...

9.8CVSS9.7AI score0.0183EPSS

CVE•added 2020/12/11 10:15 p.m.•55 views

CVE-2020-13985

An issue was discovered in Contiki through 3.0. A memory corruption vulnerability exists in the uIP TCP/IP stack component when handling RPL extension headers of IPv6 network packets in rpl_remove_header in net/rpl/rpl-ext-header.c.

7.5CVSS8.1AI score0.00548EPSS

CVE•added 2020/12/11 10:15 p.m.•51 views

CVE-2020-13986

An issue was discovered in Contiki through 3.0. An infinite loop exists in the uIP TCP/IP stack component when handling RPL extension headers of IPv6 network packets in rpl_remove_header in net/rpl/rpl-ext-header.c.

7.5CVSS7.9AI score0.0032EPSS

CVE•added 2020/12/11 10:15 p.m.•49 views

CVE-2020-13984

An issue was discovered in Contiki through 3.0. An infinite loop exists in the uIP TCP/IP stack component when processing IPv6 extension headers in ext_hdr_options_process in net/ipv6/uip6.c.

7.5CVSS7.9AI score0.00447EPSS