PT-2023-25351 · Libcoap · Libcoap
Mrdeep1
·
Publicado
2023-06-19
·
Atualizado
2023-06-27
·
CVE-2023-35862
CVSS v3.1
6.5
Média
| Vetor | AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H |
Name of the Vulnerable Software and Affected Versions
libcoap version 4.3.1
Description
The issue is related to a buffer over-read in the
coap parse oscore conf mem function located at coap oscore.c. This function is part of the libcoap library.Recommendations
For libcoap version 4.3.1, consider disabling the
coap parse oscore conf mem function as a temporary workaround until a patch is available.Exploit
Correção
Out of bounds Read
Encontrou algum problema na descrição? Tem algo a acrescentar? Fique à vontade para nos escrever 👾
Enumeração de Fraquezas
Identificadores relacionados
Produtos afetados
Libcoap