Openthread: >> Wpantund Security Vulnerabilities
OpenThread wpantund through 2021-07-02 has a stack-based Buffer Overflow because of an inconsistency in the integer data type for metric_len.
CVSS Score
6.8
EPSS Score
0.001
Published
2021-07-02
A memory leak in Openthread's wpantund versions up to commit 0e5d1601febb869f583e944785e5685c6c747be7, when used in an environment where wpanctl is directly interfacing with the control driver (eg: debug environments) can allow an attacker to crash the service (DoS). We recommend updating, or to restrict access in your debug environments.
CVSS Score
5.0
EPSS Score
0.001
Published
2020-07-07