CVE-2024-41125 | Contiki-NG up to 4.9 SNMP Module snmp-ber.c snmp_ber_decode_string_len_buffer out-of-bounds (GHSA-qjj3-gqx7-438w)

Inserito da Angelo Barbosa | Nov 27, 2024 | CVE

A vulnerability was found in Contiki-NG up to 4.9 and classified as critical. Affected by this issue is the function snmp_ber_decode_string_len_buffer of the file os/net/app-layer/snmp/snmp-ber.c of the component SNMP Module. The manipulation leads to out-of-bounds read.

This vulnerability is handled as CVE-2024-41125. The attack needs to be done within the local network. There is no exploit available.

It is recommended to apply a patch to fix this issue.

CVE-2024-41125 | Contiki-NG up to 4.9 SNMP Module snmp-ber.c snmp_ber_decode_string_len_buffer out-of-bounds (GHSA-qjj3-gqx7-438w)

Post correlati

CVE-2024-10204 | Dassault Systèmes SolidWorks up to 2024 SP5/2025 X_B File heap-based overflow

CVE-2024-21312 | Microsoft denial of service

CVE-2024-43527 | Microsoft

CVE-2024-4205 | Premium Addons for Elementor Plugin up to 4.10.31 on WordPress authorization