Shodan
Vulnerabilities
Vulnerable Software

Vulnerability Details CVE-2023-24818

RIOT-OS, an operating system that supports Internet of Things devices, contains a network stack with the ability to process 6LoWPAN frames. Prior to version 2022.10, an attacker can send a crafted frame to the device resulting in a NULL pointer dereference. During forwarding of a fragment an uninitialized entry in the reassembly buffer is used. The NULL pointer dereference triggers a hard fault exception resulting in denial of service. Version 2022.10 fixes this issue. As a workaround, disable support for fragmented IP datagrams or apply the patches manually.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.003
EPSS Ranking 50.6%
CVSS Severity
CVSS v3 Score 7.5
References
Products affected by CVE-2023-24818
  • Riot-Os » Riot » Version: 2013.08
    cpe:2.3:o:riot-os:riot:2013.08
  • Riot-Os » Riot » Version: 2014.01
    cpe:2.3:o:riot-os:riot:2014.01
  • Riot-Os » Riot » Version: 2014.05
    cpe:2.3:o:riot-os:riot:2014.05
  • Riot-Os » Riot » Version: 2014.12
    cpe:2.3:o:riot-os:riot:2014.12
  • Riot-Os » Riot » Version: 2015.09
    cpe:2.3:o:riot-os:riot:2015.09
  • Riot-Os » Riot » Version: 2015.12
    cpe:2.3:o:riot-os:riot:2015.12
  • Riot-Os » Riot » Version: 2016.04
    cpe:2.3:o:riot-os:riot:2016.04
  • Riot-Os » Riot » Version: 2016.07
    cpe:2.3:o:riot-os:riot:2016.07
  • Riot-Os » Riot » Version: 2016.10
    cpe:2.3:o:riot-os:riot:2016.10
  • Riot-Os » Riot » Version: 2017.01
    cpe:2.3:o:riot-os:riot:2017.01
  • Riot-Os » Riot » Version: 2017.04
    cpe:2.3:o:riot-os:riot:2017.04
  • Riot-Os » Riot » Version: 2017.07
    cpe:2.3:o:riot-os:riot:2017.07
  • Riot-Os » Riot » Version: 2017.10
    cpe:2.3:o:riot-os:riot:2017.10
  • Riot-Os » Riot » Version: 2018.01
    cpe:2.3:o:riot-os:riot:2018.01
  • Riot-Os » Riot » Version: 2018.04
    cpe:2.3:o:riot-os:riot:2018.04
  • Riot-Os » Riot » Version: 2018.07
    cpe:2.3:o:riot-os:riot:2018.07
  • Riot-Os » Riot » Version: 2018.10
    cpe:2.3:o:riot-os:riot:2018.10
  • Riot-Os » Riot » Version: 2018.10.1
    cpe:2.3:o:riot-os:riot:2018.10.1
  • Riot-Os » Riot » Version: 2019.01
    cpe:2.3:o:riot-os:riot:2019.01
  • Riot-Os » Riot » Version: 2019.04
    cpe:2.3:o:riot-os:riot:2019.04
  • Riot-Os » Riot » Version: 2019.07
    cpe:2.3:o:riot-os:riot:2019.07
  • Riot-Os » Riot » Version: 2019.10
    cpe:2.3:o:riot-os:riot:2019.10
  • Riot-Os » Riot » Version: 2020.01
    cpe:2.3:o:riot-os:riot:2020.01
  • Riot-Os » Riot » Version: 2020.01.1
    cpe:2.3:o:riot-os:riot:2020.01.1
  • Riot-Os » Riot » Version: 2020.04
    cpe:2.3:o:riot-os:riot:2020.04
  • Riot-Os » Riot » Version: 2021.01
    cpe:2.3:o:riot-os:riot:2021.01
  • Riot-Os » Riot » Version: 2021.04
    cpe:2.3:o:riot-os:riot:2021.04
  • Riot-Os » Riot » Version: 2021.07
    cpe:2.3:o:riot-os:riot:2021.07
  • Riot-Os » Riot » Version: 2021.10
    cpe:2.3:o:riot-os:riot:2021.10
  • Riot-Os » Riot » Version: 2022.01
    cpe:2.3:o:riot-os:riot:2022.01
  • Riot-Os » Riot » Version: 2022.04
    cpe:2.3:o:riot-os:riot:2022.04
  • Riot-Os » Riot » Version: 2022.07
    cpe:2.3:o:riot-os:riot:2022.07


Products
Pricing
Contact Us

Shodan ® - All rights reserved