Shodan
Vulnerabilities
Vulnerable Software
Ccn-Lite:  >> Ccn-Lite  >> 0.3.0  Security Vulnerabilities
CVE-2017-12472
ccnl-ext-mgmt.c in CCN-lite before 2.00 allows context-dependent attackers to have unspecified impact by leveraging missing NULL pointer checks after ccnl_malloc.
CVSS Score
9.8
EPSS Score
0.004
Published
2018-02-07
CVE-2017-12473
ccnl_ccntlv_bytes2pkt in CCN-lite allows context-dependent attackers to cause a denial of service (application crash) via vectors involving packets with "wrong L values."
CVSS Score
7.5
EPSS Score
0.004
Published
2018-02-07
CVE-2017-12412
ccn-lite-ccnb2xml in CCN-lite before 2.0.0 allows context-dependent attackers to have unspecified impact via a crafted file, which triggers infinite recursion and a stack overflow.
CVSS Score
7.8
EPSS Score
0.003
Published
2018-02-07
CVE-2017-12463
Memory leak in the ccnl_app_RX function in ccnl-uapi.c in CCN-lite before 2.00 allows context-dependent attackers to cause a denial of service (memory consumption) via vectors involving an envelope_s structure pointer when the packet format is unknown.
CVSS Score
7.5
EPSS Score
0.003
Published
2018-02-07
CVE-2017-12464
ccn-lite-valid.c in CCN-lite before 2.00 allows context-dependent attackers to cause a denial of service (NULL pointer dereference) via vectors involving the keyfile variable.
CVSS Score
7.5
EPSS Score
0.003
Published
2018-02-07
CVE-2017-12465
Multiple integer overflows in CCN-lite before 2.00 allow context-dependent attackers to have unspecified impact via vectors involving the (1) vallen variable in the iottlv_parse_sequence function or (2) typ, vallen and i variables in the localrpc_parse function.
CVSS Score
9.8
EPSS Score
0.004
Published
2018-02-07
CVE-2017-12466
CCN-lite before 2.00 allows context-dependent attackers to have unspecified impact via vectors related to ssl_halen when running ccn-lite-sim, which trigger an out-of-bounds access.
CVSS Score
9.8
EPSS Score
0.004
Published
2018-02-07
CVE-2017-12467
Memory leak in CCN-lite before 2.00 allows context-dependent attackers to cause a denial of service (memory consumption) by leveraging failure to allocate memory for the comp or complen structure member.
CVSS Score
7.5
EPSS Score
0.003
Published
2018-02-07
CVE-2017-12468
Buffer overflow in ccn-lite-ccnb2xml.c in CCN-lite before 2.00 allows context-dependent attackers to have unspecified impact via vectors involving the vallen and len variables.
CVSS Score
9.8
EPSS Score
0.005
Published
2018-02-07
CVE-2017-12469
Buffer overflow in util/ccnl-common.c in CCN-lite before 2.00 allows context-dependent attackers to have unspecified impact by leveraging incorrect memory allocation.
CVSS Score
9.8
EPSS Score
0.005
Published
2018-02-07


Products
Pricing
Contact Us

Shodan ® - All rights reserved