📦

contiki-ng.

Vendor: contiki-ng

Actively Exploited 0 CISA KEV List

PoC / Exploits 0 Code Available

Total RCEs 2 Remote Access

Total CVEs 5 Total Indexed

Avg. EPSS 0.06% Exploit Prob.

Latest CVE CVE-2018-16667 Sep 07

Security Vulnerability Index

Page 1 / 1

7.0 CVSS

CVE-2018-16667

An issue was discovered in Contiki-NG through 4.1. There is a buffer over-read in lookup in os/storage/antelope/lvm.c while parsing AQL (lvm_register_variable, lvm_set_variable_value, create_intersection, create_union).

EPSS: 0.13%

Severity: HIGH

Sep 07, 2018

7.8 CVSS

CVE-2018-16666

RCE

An issue was discovered in Contiki-NG through 4.1. There is a stack-based buffer overflow in next_string in os/storage/antelope/aql-lexer.c while parsing AQL (parsing next string).

EPSS: 0.05%

Severity: HIGH

Sep 07, 2018

6.1 CVSS

CVE-2018-16665

An issue was discovered in Contiki-NG through 4.1. There is a buffer overflow while parsing AQL in lvm_shift_for_operator in os/storage/antelope/lvm.c.

EPSS: 0.05%

Severity: MEDIUM

Sep 07, 2018

7.0 CVSS

CVE-2018-16664

An issue was discovered in Contiki-NG through 4.1. There is a buffer overflow in lvm_set_type in os/storage/antelope/lvm.c while parsing AQL (lvm_set_op, lvm_set_relation, lvm_set_operand).

EPSS: 0.05%

Severity: HIGH

Sep 07, 2018

7.8 CVSS

CVE-2018-16663

RCE

An issue was discovered in Contiki-NG through 4.1. There is a stack-based buffer overflow in parse_relations in os/storage/antelope/aql-parser.c while parsing AQL (storage of relations).

EPSS: 0.05%

Severity: HIGH

Sep 07, 2018

Displaying 5 of 5 Total Entries

Total 1 Sections