Openthread

openthread

2 CVEs • 1 product

Products (1)

Click to collapse

Toggle

Wpantund

wpantund

2 CVEs

CVEs (2)

CVE VENDORS PRODUCTS UPDATED PUBLISHED CVSS
CVE-2021-33889 1Openthread 1Wpantund Nov 21, 2024 Jul 2, 2021 N/A· v4 6.8 MEDIUM· v3 4.6 MEDIUM· v2 OpenThread wpantund through 2021-07-02 has a stack-based Buffer Overflow because of an inconsistency in the integer data type for metric_len.
CVE-2020-8916 1Openthread 1Wpantund Nov 21, 2024 Jul 7, 2020 N/A· v4 5.5 MEDIUM· v3 2.1 LOW· v2 A memory leak in Openthread's wpantund versions up to commit 0e5d1601febb869f583e944785e5685c6c747be7, when used in an environment where wpanctl is directly interfacing with the control driver (eg: debug environments) ca...Show more A memory leak in Openthread's wpantund versions up to commit 0e5d1601febb869f583e944785e5685c6c747be7, when used in an environment where wpanctl is directly interfacing with the control driver (eg: debug environments) can allow an attacker to crash the service (DoS). We recommend updating, or to restrict access in your debug environments.Show less

CVE

VENDORS

PRODUCTS

UPDATED

PUBLISHED

CVSS

CVE-2021-33889

1Openthread

1Wpantund

Nov 21, 2024

Jul 2, 2021

N/A· v4

6.8 MEDIUM· v3

4.6 MEDIUM· v2

OpenThread wpantund through 2021-07-02 has a stack-based Buffer Overflow because of an inconsistency in the integer data type for metric_len.

CVE-2020-8916

1Openthread

1Wpantund

Nov 21, 2024

Jul 7, 2020

N/A· v4

5.5 MEDIUM· v3

2.1 LOW· v2

A memory leak in Openthread's wpantund versions up to commit 0e5d1601febb869f583e944785e5685c6c747be7, when used in an environment where wpanctl is directly interfacing with the control driver (eg: debug environments) can allow an attacker to crash the service (DoS). We recommend updating, or to restrict access in your debug environments.Show less