CVE-2025-34468

Name of the Vulnerable Software and Affected Versions libcoap versions up to and including 4.3.5

Description The software contains a stack-based buffer overflow in address resolution. This occurs when attacker-controlled hostname data is copied into a fixed 256-byte stack buffer without sufficient bounds checking. A remote attacker could potentially cause a crash and, depending on compiler settings and runtime memory protections, achieve remote code execution. Exploitation requires the proxy logic to be enabled, specifically the proxy request handling code path within an application utilizing libcoap.

Recommendations Update libcoap to a version prior to 4.3.5 that includes commit 30db3ea.