CVE-2024-41125 | Contiki-NG up to 4.9 SNMP Module snmp-ber.c snmp_ber_decode_string_len_buffer out-of-bounds (GHSA-qjj3-gqx7-438w)

Inserito da Angelo Barbosa | Nov 27, 2024 | CVE

A vulnerability was found in Contiki-NG up to 4.9 and classified as critical. Affected by this issue is the function snmp_ber_decode_string_len_buffer of the file os/net/app-layer/snmp/snmp-ber.c of the component SNMP Module. The manipulation leads to out-of-bounds read.

This vulnerability is handled as CVE-2024-41125. The attack needs to be done within the local network. There is no exploit available.

It is recommended to apply a patch to fix this issue.

CVE-2024-41125 | Contiki-NG up to 4.9 SNMP Module snmp-ber.c snmp_ber_decode_string_len_buffer out-of-bounds (GHSA-qjj3-gqx7-438w)

Post correlati

CVE-2024-5735 | Nikola Vasilijevski AdmirorFrames up to 4.x on Joomla afHelper.php unknown vulnerability

CVE-2024-8357 | Visteon Infotainment Local Privilege Escalation (ZDI-24-1189)

CVE-2023-46388 | LOYTEC LINX-151/LINX-212 SMTP Client dpal_config.wbx credentials storage

CVE-2023-49745 | Spiffy Calendar Plugin up to 4.9.5 on WordPress cross site scripting