CVEDB API

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2017-8289

Stack-based buffer overflow in the ipv6_addr_from_str function in sys/net/network_layer/ipv6/addr/ipv6_addr_from_str.c in RIOT prior to 2017-04-25 allows local attackers, and potentially remote attackers, to cause a denial of service or possibly have unspecified other impact via a malformed IPv6 address.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.006

EPSS Ranking 68.8%

CVSS Severity

CVSS v3 Score 9.8

CVSS v2 Score 7.5

References

Products affected by CVE-2017-8289

Riot Project » Riot » Version: 2013.08

cpe:2.3:a:riot_project:riot:2013.08
Riot Project » Riot » Version: 2014.01

cpe:2.3:a:riot_project:riot:2014.01
Riot Project » Riot » Version: 2014.05

cpe:2.3:a:riot_project:riot:2014.05
Riot Project » Riot » Version: 2014.12

cpe:2.3:a:riot_project:riot:2014.12
Riot Project » Riot » Version: 2015.09

cpe:2.3:a:riot_project:riot:2015.09
Riot Project » Riot » Version: 2015.12

cpe:2.3:a:riot_project:riot:2015.12
Riot Project » Riot » Version: 2016.03

cpe:2.3:a:riot_project:riot:2016.03
Riot Project » Riot » Version: 2016.04

cpe:2.3:a:riot_project:riot:2016.04
Riot Project » Riot » Version: 2016.07

cpe:2.3:a:riot_project:riot:2016.07
Riot Project » Riot » Version: 2016.10

cpe:2.3:a:riot_project:riot:2016.10
Riot Project » Riot » Version: 2017.01

cpe:2.3:a:riot_project:riot:2017.01

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2017-8289

Products

Pricing

Contact Us