Buffer overflow in Tinyos

CVE-2026-22212

TinyOS versions up to and including 2.1.2 contain a stack-based buffer overflow vulnerability in the mcp2200gpio utility. The vulnerability is caused by unsafe use of strcpy() and strcat() functions when constructing device paths during au…

Vulnerability class: Buffer Overflow

EPSS: 0.001 (2.8th percentile) — read the EPSS interpretation.

Affected products

Weakness classification (CWE)

References