Buffer overflow in Tinyos
CVE-2026-22211
TinyOS versions up to and including 2.1.2 contain a global buffer overflow vulnerability in the printfUART formatted output implementation used within the ZigBee / IEEE 802.15.4 networking stack. The implementation formats output into a fi…
Vulnerability class: Buffer Overflow
EPSS: 0.002 (5.5th percentile) — read the EPSS interpretation.
Affected products
- Tinyos — versions 0
Weakness classification (CWE)
References
- disclosure@vulncheck.com (technical-description, exploit)
- disclosure@vulncheck.com (product)
- disclosure@vulncheck.com (third-party-advisory)