Known Vulnerabilities for Contiki by Contiki-os
Listed below are 10 of the newest known vulnerabilities associated with "Contiki" by "Contiki-os".
These CVEs are retrieved based on exact matches on listed software, hardware, and vendor information (CPE data) as well as a keyword search to ensure the newest vulnerabilities with no officially listed software information are still displayed.
Data on known vulnerable versions is also displayed based on information from known CPEs
Known Vulnerabilities
| CVE | Shortened Description | Severity | Publish Date | Last Modified |
|---|---|---|---|---|
| CVE-2021-40523 | In Contiki 3.0, Telnet option negotiation is mishandled. During negotiation between a server and a client, the server may fai... | 7.5 - HIGH | 2021-09-05 | 2021-09-10 |
| CVE-2021-38387 | In Contiki 3.0, a Telnet server that silently quits (before disconnection with clients) leads to connected clients entering a... | 7.5 - HIGH | 2021-08-10 | 2022-05-03 |
| CVE-2021-38386 | In Contiki 3.0, a buffer overflow in the Telnet service allows remote attackers to cause a denial of service because the ls c... | 7.5 - HIGH | 2021-08-10 | 2021-08-17 |
| CVE-2021-38311 | In Contiki 3.0, potential nonterminating acknowledgment loops exist in the Telnet service. When the negotiated options are al... | 7.5 - HIGH | 2021-08-09 | 2021-08-17 |
| CVE-2021-28362 | An issue was discovered in Contiki through 3.0. When sending an ICMPv6 error message because of invalid extension header opti... | 7.5 - HIGH | 2021-03-24 | 2021-03-26 |
| CVE-2020-17437 | An issue was discovered in uIP 1.0, as used in Contiki 3.0 and other products. When the Urgent flag is set in a TCP packet, a... | 8.2 - HIGH | 2020-12-11 | 2022-08-08 |
| CVE-2020-13987 | An issue was discovered in Contiki through 3.0. An Out-of-Bounds Read vulnerability exists in the uIP TCP/IP Stack component ... | 7.5 - HIGH | 2020-12-11 | 2022-08-06 |
| CVE-2020-13986 | An issue was discovered in Contiki through 3.0. An infinite loop exists in the uIP TCP/IP stack component when handling RPL e... | 7.5 - HIGH | 2020-12-11 | 2020-12-16 |
| CVE-2020-13985 | An issue was discovered in Contiki through 3.0. A memory corruption vulnerability exists in the uIP TCP/IP stack component wh... | 7.5 - HIGH | 2020-12-11 | 2021-07-21 |
| CVE-2020-13984 | An issue was discovered in Contiki through 3.0. An infinite loop exists in the uIP TCP/IP stack component when processing IPv... | 7.5 - HIGH | 2020-12-11 | 2020-12-14 |
Known Affected Configurations (CPE V2.3)
| Type | Vendor | Product | Version | Update | Edition | Language |
|---|---|---|---|---|---|---|
| Operating System | Contiki-os | Contiki | 3.0 | All | All | All |
| Operating System | Contiki-os | Contiki | 2.7 | All | All | All |
| Operating System | Contiki-os | Contiki | 2.6 | All | All | All |
| Operating System | Contiki-os | Contiki | 2.5 | All | All | All |
| Operating System | Contiki-os | Contiki | 2.4 | All | All | All |
| Operating System | Contiki-os | Contiki | 2.3 | All | All | All |
| Operating System | Contiki-os | Contiki | 2.2.3 | All | All | All |
| Operating System | Contiki-os | Contiki | 2.2.2 | All | All | All |
| Operating System | Contiki-os | Contiki | 2.2.1 | All | All | All |
| Operating System | Contiki-os | Contiki | 2.2 | All | All | All |
| Operating System | Contiki-os | Contiki | 2.1 | All | All | All |
| Operating System | Contiki-os | Contiki | 2.0 | All | All | All |
| Operating System | Contiki-os | Contiki | - | All | All | All |