Shodan
Vulnerabilities
Vulnerable Software
Riot-Os:  Security Vulnerabilities
CVE-2021-31664
RIOT-OS 2021.01 before commit 44741ff99f7a71df45420635b238b9c22093647a contains a buffer overflow which could allow attackers to obtain sensitive information.
CVSS Score
7.5
EPSS Score
0.003
Published
2021-06-18
CVE-2021-31660
RIOT-OS 2021.01 before commit 85da504d2dc30188b89f44c3276fc5a25b31251f contains a buffer overflow which could allow attackers to obtain sensitive information.
CVSS Score
7.5
EPSS Score
0.003
Published
2021-06-18
CVE-2021-31661
RIOT-OS 2021.01 before commit 609c9ada34da5546cffb632a98b7ba157c112658 contains a buffer overflow that could allow attackers to obtain sensitive information.
CVSS Score
7.5
EPSS Score
0.003
Published
2021-06-18
CVE-2021-31662
RIOT-OS 2021.01 before commit 07f1254d8537497552e7dce80364aaead9266bbe contains a buffer overflow which could allow attackers to obtain sensitive information.
CVSS Score
7.5
EPSS Score
0.003
Published
2021-06-18
CVE-2021-31663
RIOT-OS 2021.01 before commit bc59d60be60dfc0a05def57d74985371e4f22d79 contains a buffer overflow which could allow attackers to obtain sensitive information.
CVSS Score
7.5
EPSS Score
0.004
Published
2021-06-18
CVE-2021-27357
RIOT-OS 2020.01 contains a buffer overflow vulnerability in /sys/net/gnrc/routing/rpl/gnrc_rpl_control_messages.c.
CVSS Score
9.8
EPSS Score
0.005
Published
2021-04-06
CVE-2021-27697
RIOT-OS 2021.01 contains a buffer overflow vulnerability in sys/net/gnrc/routing/rpl/gnrc_rpl_validation.c through the gnrc_rpl_validation_options() function.
CVSS Score
9.8
EPSS Score
0.005
Published
2021-04-06
CVE-2021-27698
RIOT-OS 2021.01 contains a buffer overflow vulnerability in /sys/net/gnrc/routing/rpl/gnrc_rpl_control_messages.c through the _parse_options() function.
CVSS Score
9.8
EPSS Score
0.005
Published
2021-04-06
CVE-2020-15350
RIOT 2020.04 has a buffer overflow in the base64 decoder. The decoding function base64_decode() uses an output buffer estimation function to compute the required buffer capacity and validate against the provided buffer size. The base64_estimate_decode_size() function calculates the expected decoded size with an arithmetic round-off error and does not take into account possible padding bytes. Due to this underestimation, it may be possible to craft base64 input that causes a buffer overflow.
CVSS Score
9.8
EPSS Score
0.005
Published
2020-07-07
CVE-2019-17389
In RIOT 2019.07, the MQTT-SN implementation (asymcute) mishandles errors occurring during a read operation on a UDP socket. The receive loop ends. This allows an attacker (via a large packet) to prevent a RIOT MQTT-SN client from working until the device is restarted.
CVSS Score
7.5
EPSS Score
0.003
Published
2019-10-09


Products
Pricing
Contact Us

Shodan ® - All rights reserved