← back
CVE-2020-24335

CVE-2020-24335

EPSS 3.0%
An issue was discovered in uIP through 1.0, as used in Contiki and Contiki-NG. Domain name parsing lacks bounds checks, allowing an attacker to corrupt memory with crafted DNS packets.
Affected products
n/a · n/a

Want to know if your infrastructure is exposed to this?

Talk to TrueHacking →
References
https://github.com/adamdunkels/uiphttps://github.com/contiki-ng/contiki-nghttps://github.com/contiki-os/contikihttps://us-cert.cisa.gov/ics/advisories/icsa-20-343-01https://www.kb.cert.org/vuls/id/815128