CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Vulnerability Details CVE-2024-31031

An issue in `coap_pdu.c` in libcoap 4.3.4 allows attackers to cause undefined behavior via a sequence of messages leading to unsigned integer overflow.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.001

EPSS Ranking 19.4%

CVSS Severity

CVSS v3 Score 7.5

References

https://github.com/obgm/libcoap/issues/1351
https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/LPENEJBV3KSASIYKNZAKXDAH7Q66KPYG/
https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/TUL7QDYFGEIJVO2ZSG4O5HEAWR6PFC52/
https://github.com/obgm/libcoap/issues/1351
https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/LPENEJBV3KSASIYKNZAKXDAH7Q66KPYG/
https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/TUL7QDYFGEIJVO2ZSG4O5HEAWR6PFC52/

Products affected by CVE-2024-31031

Libcoap » Libcoap » Version: 4.3.4

cpe:2.3:a:libcoap:libcoap:4.3.4
Fedoraproject » Fedora » Version: 39

cpe:2.3:o:fedoraproject:fedora:39
Fedoraproject » Fedora » Version: 40

cpe:2.3:o:fedoraproject:fedora:40

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2024-31031

Products

Pricing

Contact Us