CVE-2022-35624

HIGH

nRF5 SDK for Mesh 5.0 - Buffer Overflow

Title source: llm
STIX 2.1

Description

In Nordic nRF5 SDK for Mesh 5.0, a heap overflow vulnerability can be triggered by sending a series of segmented packets with SegO > SegN

Scores

CVSS v3 8.2
EPSS 0.0086
EPSS Percentile 54.1%
Attack Vector ADJACENT_NETWORK
CVSS:3.1/AV:A/AC:L/PR:L/UI:N/S:C/C:H/I:L/A:L

Details

CWE
CWE-787
Status published
Products (1)
nordicsemi/nrf5_sdk_for_mesh < 5.0
Published Aug 15, 2022
Tracked Since Feb 18, 2026