CVE-2022-36054

MEDIUM

contiki-ng < 4.8 - Out-of-bounds Write in 6LoWPAN Packet Processing

Title source: llm
STIX 2.1

Description

Contiki-NG is an open-source, cross-platform operating system for Next-Generation IoT devices. The 6LoWPAN implementation in the Contiki-NG operating system (file os/net/ipv6/sicslowpan.c) contains an input function that processes incoming packets and copies them into a packet buffer. Because of a missing length check in the input function, it is possible to write outside the packet buffer's boundary. The vulnerability can be exploited by anyone who has the possibility to send 6LoWPAN packets to a Contiki-NG system. In particular, the vulnerability is exposed when sending either of two types of 6LoWPAN packets: an unfragmented packet or the first fragment of a fragmented packet. If the packet is sufficiently large, a subsequent memory copy will cause an out-of-bounds write with data supplied by the attacker.

References (2)

Core 2
Core References
Patch, Third Party Advisory x_refsource_misc
https://github.com/contiki-ng/contiki-ng/pull/1648

Scores

CVSS v3 6.8
EPSS 0.0063
EPSS Percentile 46.0%
Attack Vector NETWORK
CVSS:3.1/AV:N/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:N

CISA SSVC

Vulnrichment
Exploitation none
Automatable no
Technical Impact total

Details

CWE
CWE-787
Status published
Products (1)
contiki-ng/contiki-ng < 4.8
Published Sep 01, 2022
Tracked Since Feb 18, 2026