Contiki-ng Tinydtls
6 CVEs affecting Contiki-ng Tinydtls. Latest disclosed: 2024-01-24. Critical: 4, High: 2.
| CVE | Severity | Score | Published | Summary |
|---|---|---|---|---|
CVE-2021-42142 | Critical | 9.8 | 2024-01-23 | An issue was discovered in Contiki-NG tinyDTLS through master branch 53a0d97. DTLS servers mishandle the early use of a large epoch number. This vulnerability… |
CVE-2021-42141 | Critical | 9.8 | 2024-01-22 | An issue was discovered in Contiki-NG tinyDTLS through 2018-08-30. One incorrect handshake could complete with different epoch numbers in the packets Client_He… |
CVE-2021-42147 | Critical | 9.1 | 2024-01-24 | Buffer over-read vulnerability in the dtls_sha256_update function in Contiki-NG tinyDTLS through master branch 53a0d97 allows remote attackers to cause a denia… |
CVE-2021-42143 | Critical | 9.1 | 2024-01-24 | An issue was discovered in Contiki-NG tinyDTLS through master branch 53a0d97. An infinite loop bug exists during the handling of a ClientHello handshake messag… |
CVE-2021-42146 | High | 7.5 | 2024-01-24 | An issue was discovered in Contiki-NG tinyDTLS through master branch 53a0d97. DTLS servers allow remote attackers to reuse the same epoch number within two tim… |
CVE-2021-42145 | High | 7.5 | 2024-01-24 | An assertion failure discovered in in check_certificate_request() in Contiki-NG tinyDTLS through master branch 53a0d97 allows attackers to cause a denial of se… |