Buffer overflow in Tinyos
CVE-2026-22212
TinyOS versions up to and including 2.1.2 contain a stack-based buffer overflow vulnerability in the mcp2200gpio utility. The vulnerability is caused by unsafe use of strcpy() and strcat() functions when constructing device paths during au…
Vulnerability class: Buffer Overflow
EPSS: 0.001 (2.8th percentile) — read the EPSS interpretation.
Affected products
- Tinyos — versions 0
Weakness classification (CWE)
References
- disclosure@vulncheck.com (technical-description, exploit)
- disclosure@vulncheck.com (product)
- disclosure@vulncheck.com (third-party-advisory)