Lucene search

K

10 matches found

CVE
CVE
added 2023/04/24 3:15 p.m.110 views

CVE-2023-24819

RIOT-OS, an operating system that supports Internet of Things devices, contains a network stack with the ability to process 6LoWPAN frames. Prior to version 2022.10, an attacker can send a crafted frame to the device resulting in an out of bounds write in the packet buffer. The overflow can be used...

9.8CVSS9.8AI score0.00392EPSS
CVE
CVE
added 2023/05/30 5:15 p.m.50 views

CVE-2023-24826

RIOT-OS, an operating system for Internet of Things (IoT) devices, contains a network stack with the ability to process 6LoWPAN frames. Prior to version 2023.04, an attacker can send crafted frames to the device to trigger the usage of an uninitialized object leading to denial of service. This issu...

7.5CVSS6.3AI score0.00205EPSS
CVE
CVE
added 2024/05/01 7:15 a.m.50 views

CVE-2024-31225

RIOT is a real-time multi-threading operating system that supports a range of devices that are typically 8-bit, 16-bit and 32-bit microcontrollers. The _on_rd_init() function does not implement a size check before copying data to the _result_buf static buffer. If an attacker can craft a long enough...

9CVSS9.7AI score0.01624EPSS
CVE
CVE
added 2023/05/30 4:15 p.m.43 views

CVE-2023-24817

RIOT-OS, an operating system for Internet of Things (IoT) devices, contains a network stack with the ability to process 6LoWPAN frames. Prior to version 2023.04, an attacker can send a crafted frame to the device resulting in an integer underflow and out of bounds access in the packet buffer. Trigg...

7.5CVSS7.3AI score0.00154EPSS
CVE
CVE
added 2023/04/24 3:15 p.m.42 views

CVE-2023-24820

RIOT-OS, an operating system that supports Internet of Things devices, contains a network stack with the ability to process 6LoWPAN frames. An attacker can send a crafted frame to the device resulting in a large out of bounds write beyond the packet buffer. The write will create a hard fault except...

7.5CVSS7.4AI score0.00197EPSS
CVE
CVE
added 2023/05/30 4:15 p.m.37 views

CVE-2023-24825

RIOT-OS, an operating system for Internet of Things (IoT) devices, contains a network stack with the ability to process 6LoWPAN frames. Prior to version 2023.04, an attacker can send a crafted frame to the device to trigger a NULL pointer dereference leading to denial of service. This issue is fixe...

7.5CVSS7.2AI score0.00228EPSS
CVE
CVE
added 2023/04/24 4:15 p.m.35 views

CVE-2023-24821

RIOT-OS, an operating system that supports Internet of Things devices, contains a network stack with the ability to process 6LoWPAN frames. Prior to version 2022.10, an attacker can send a crafted frame to the device resulting in a large out of bounds write beyond the packet buffer. The write will ...

7.5CVSS7.5AI score0.00176EPSS
CVE
CVE
added 2023/04/24 3:15 p.m.29 views

CVE-2023-24818

RIOT-OS, an operating system that supports Internet of Things devices, contains a network stack with the ability to process 6LoWPAN frames. Prior to version 2022.10, an attacker can send a crafted frame to the device resulting in a NULL pointer dereference. During forwarding of a fragment an uninit...

7.5CVSS7.5AI score0.00275EPSS
CVE
CVE
added 2023/04/24 4:15 p.m.25 views

CVE-2023-24823

RIOT-OS, an operating system that supports Internet of Things devices, contains a network stack with the ability to process 6LoWPAN frames. Prior to version 2022.10, an attacker can send a crafted frame to the device resulting in a type confusion between IPv6 extension headers and a UDP header. Thi...

9.8CVSS9.8AI score0.00458EPSS
CVE
CVE
added 2023/04/24 4:15 p.m.24 views

CVE-2023-24822

RIOT-OS, an operating system that supports Internet of Things devices, contains a network stack with the ability to process 6LoWPAN frames. Prior to version 2022.10, an attacker can send a crafted frame to the device resulting in a NULL pointer dereference while encoding a 6LoWPAN IPHC header. The ...

7.5CVSS7.3AI score0.00179EPSS