CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Vulnerability Details CVE-2021-42141

An issue was discovered in Contiki-NG tinyDTLS through 2018-08-30. One incorrect handshake could complete with different epoch numbers in the packets Client_Hello, Client_key_exchange, and Change_cipher_spec, which may cause denial of service.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.002

EPSS Ranking 38.4%

CVSS Severity

CVSS v3 Score 9.8

References

http://packetstormsecurity.com/files/176625/Contiki-NG-tinyDTLS-Denial-Of-Service.html
https://github.com/contiki-ng/tinydtls/issues/27
https://seclists.org/fulldisclosure/2024/Jan/14
http://packetstormsecurity.com/files/176625/Contiki-NG-tinyDTLS-Denial-Of-Service.html
http://seclists.org/fulldisclosure/2024/Jan/14
https://github.com/contiki-ng/tinydtls/issues/27
https://seclists.org/fulldisclosure/2024/Jan/14

Products affected by CVE-2021-42141

Contiki-Ng » Tinydtls » Version: N/A

cpe:2.3:a:contiki-ng:tinydtls:-
Contiki-Ng » Tinydtls » Version: 2018-08-30

cpe:2.3:a:contiki-ng:tinydtls:2018-08-30

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2021-42141

Products

Pricing

Contact Us