Vulnerability Details CVE-2018-20579
Contiki-NG before 4.2 has a stack-based buffer overflow in the push function in os/lib/json/jsonparse.c that allows an out-of-bounds write of an '{' or '[' character.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.001
EPSS Ranking 17.8%
CVSS Severity
CVSS v3 Score 7.1
CVSS v2 Score 3.6
References
Products affected by CVE-2018-20579
-
cpe:2.3:o:contiki-ng_project:contiki-ng:4.2