Buffer Overflow Vulnerability in RIOT-OS by RIOT
CVE-2021-31664

7.5HIGH

Key Information:

Vendor: Riot-os
Status: Riot
Vendor: CVE Published:; 18 June 2021

What is CVE-2021-31664?

A buffer overflow vulnerability exists in RIOT-OS 2021.01 prior to commit 44741ff99f7a71df45420635b238b9c22093647a. This flaw could potentially enable attackers to exploit the system, leading to the unauthorized disclosure of sensitive information. It highlights the need for developers to implement robust input validation to prevent such vulnerabilities.

References

https://github.com/RIOT-OS/RIOT/pull/15345

x_refsource_MISC

https://github.com/RIOT-OS/RIOT/commit/44741ff99f7a71df45...

x_refsource_CONFIRM

CVSS V3.1

Score:

7.5

Severity:

HIGH

Confidentiality:

High

Integrity:

None

Availability:

High

Attack Vector:

Network

Attack Complexity:

Low

Privileges Required:

None

User Interaction:

None

Scope:

Unchanged

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Jun 18, 2021
Vulnerability Reserved
Apr 23, 2021

Riot-os

What is CVE-2021-31664?

References

CVSS V3.1

Timeline