Lucene search
Veracode Vulnerability DatabaseVERACODE:22550HistoryFeb 24, 2020 - 3:13 a.m.
Denial Of Service (DoS)
2020-02-2403:13:42
Veracode Vulnerability Database
sca.analysiscenter.veracode.com
6
0.002 Low
EPSS
Percentile
60.1%
cryptoauthlib is vulnerable to denial of service (DoS).The attack exists due to lack of validation of reported packet length against the packet being processed, leading to an application crash.
| CPE | Name | Operator | Version |
|---|---|---|---|
| cryptoauthlib | le | 20190903 |
References
www.openwall.com/lists/oss-security/2020/10/22/1
census-labs.com/news/2020/10/21/microchip-cryptoauthlib-atcab_sign_base-buffer-overflow/
github.com/MicrochipTech/cryptoauthlib/commit/eabc052456b6757f17db47b41b1de7b7c2cc167f
github.com/MicrochipTech/cryptoauthlib/releases
www.microchip.com/design-centers/security-ics/cryptoauthentication
Related
osv
osv
CVE-2019-16128
2020-10-22 20:15:12
nvd
nvd
CVE-2019-16128
2020-10-22 20:15:12
cve
cve
CVE-2019-16128
2020-10-22 20:15:12
prion
prion
Buffer overflow
2020-10-22 20:15:00
cvelist
cvelist
CVE-2019-16128
2020-10-22 19:07:19