← Back

Wpantund

wpantund

Vendor: Openthread • 2 CVEs

CVEs (2)

CVE
VENDORS
PRODUCTS
UPDATED
PUBLISHED
CVSS
CVE-2021-33889
1Openthread
1Wpantund
Nov 21, 2024
Jul 2, 2021
N/A· v4
6.8 MEDIUM· v3
4.6 MEDIUM· v2
OpenThread wpantund through 2021-07-02 has a stack-based Buffer Overflow because of an inconsistency in the integer data type for metric_len.
CVE-2020-8916
1Openthread
1Wpantund
Nov 21, 2024
Jul 7, 2020
N/A· v4
5.5 MEDIUM· v3
2.1 LOW· v2
A memory leak in Openthread's wpantund versions up to commit 0e5d1601febb869f583e944785e5685c6c747be7, when used in an environment where wpanctl is directly interfacing with the control driver (eg: debug environments) ca...Show more
A memory leak in Openthread's wpantund versions up to commit 0e5d1601febb869f583e944785e5685c6c747be7, when used in an environment where wpanctl is directly interfacing with the control driver (eg: debug environments) can allow an attacker to crash the service (DoS). We recommend updating, or to restrict access in your debug environments.Show less