CVE Tools

contiki-ng

Operating Systemsoss-project

30

Cumulative CVEs

7

Monthly snapshots

#67

Peak rank

Top products

tinydtls6 contiki-ng tinydtls1

Latest CVEs

The 15 most recently published vulnerabilities affecting contiki-ng.

CVE-2023-29001Uncontrolled recursion due to insufficient validation of the IPv6 source routing header in Contiki-NG7.5Nov 27, 2024
CVE-2024-41125Out-of-bounds read in SNMP when decoding a string in Contiki-NG8.3Nov 27, 2024
CVE-2024-41126Out-of-bounds read when decoding SNMP messages in Contiki-NG8.3Nov 27, 2024
CVE-2024-47181Unaligned memory access in RPL option processing in Contiki-NG7.5Nov 27, 2024
CVE-2023-50926Unvalidated DIO prefix info length in RPL-Lite in Contiki-NG7.5Feb 14, 2024
CVE-2023-50927Insufficient boundary checks for DIO and DAO messages in RPL-Lite in Contiki-NG8.6Feb 14, 2024
CVE-2023-48229Out-of-bounds write in the radio driver for Contiki-NG nRF platforms7.0Feb 14, 2024
CVE-2021-42147Buffer over-read vulnerability in the dtls_sha256_update function in Contiki-NG tinyDTLS through master branch 53a0d97 allows remote attackers to cause a denial of service via crafted data packet.9.1Jan 24, 2024
CVE-2021-42146An issue was discovered in Contiki-NG tinyDTLS through master branch 53a0d97. DTLS servers allow remote attackers to reuse the same epoch number within two times the TCP maximum segment lifetime, w...7.5Jan 24, 2024
CVE-2021-42145An assertion failure discovered in in check_certificate_request() in Contiki-NG tinyDTLS through master branch 53a0d97 allows attackers to cause a denial of service.7.5Jan 24, 2024
CVE-2021-42144Buffer over-read vulnerability in Contiki-NG tinyDTLS through master branch 53a0d97 allows attackers obtain sensitive information via crafted input to dtls_ccm_decrypt_message().9.8Jan 24, 2024
CVE-2021-42143An issue was discovered in Contiki-NG tinyDTLS through master branch 53a0d97. An infinite loop bug exists during the handling of a ClientHello handshake message. This bug allows remote attackers to...9.1Jan 24, 2024
CVE-2021-42142An issue was discovered in Contiki-NG tinyDTLS through master branch 53a0d97. DTLS servers mishandle the early use of a large epoch number. This vulnerability allows remote attackers to cause a den...9.8Jan 23, 2024
CVE-2021-42141An issue was discovered in Contiki-NG tinyDTLS through 2018-08-30. One incorrect handshake could complete with different epoch numbers in the packets Client_Hello, Client_key_exchange, and Change_c...9.8Jan 22, 2024
CVE-2020-27634In Contiki 4.5, TCP ISNs are improperly random.9.1Oct 10, 2023