0.002 Low
EPSS
Percentile
60.1%
cryptoauthlib is vulnerable to denial of service (DoS).The attack exists due to lack of validation of reported packet length against the packet being processed, leading to an application crash.
www.openwall.com/lists/oss-security/2020/10/22/1
census-labs.com/news/2020/10/21/microchip-cryptoauthlib-atcab_genkey_base-buffer-overflow/
github.com/MicrochipTech/cryptoauthlib/releases
www.microchip.com/design-centers/security-ics/cryptoauthentication