Buffer Over-Read in CoAP Library of Arm Mbed OS
CVE-2020-12886

9.1CRITICAL

Key Information:

Vendor: Arm
Status: Mbed Os
Vendor: CVE Published:; 18 June 2020

Summary

A buffer over-read vulnerability exists in the CoAP library of Arm Mbed OS 5.15.3. The issue arises within the sn_coap_parser_options_parse() function, where the length of the message token is specified in the first byte of a CoAP packet. However, there is no validation of this token length against the actual input buffer, leading to potential memory access outside the designated buffer boundaries. This flaw can result in unexpected behavior or information leaks, highlighting the need for careful input validation to ensure robust security.

References

https://github.com/ARMmbed/mbed-os/issues/12948

x_refsource_MISC

https://github.com/ARMmbed/mbed-coap/pull/116

x_refsource_CONFIRM

CVSS V3.1

Score:

9.1

Severity:

CRITICAL

Confidentiality:

High

Integrity:

None

Availability:

High

Attack Vector:

Network

Attack Complexity:

Low

Privileges Required:

None

User Interaction:

None

Scope:

Unchanged

Timeline

Vulnerability published
Jun 18, 2020
Vulnerability Reserved
May 15, 2020