Buffer over-read vulnerability in Contiki-NG tinyDTLS through master branch 53a0d97 allows attackers obtain sensitive information via crafted input to dtls_ccm_decrypt_message().
2024-01-24T18:15:08.150
2025-06-20T20:15:22.800
Modified
CVSSv3.1: 9.8 (CRITICAL)
Type | Vendor | Product | Version/Range | Vulnerable? |
---|---|---|---|---|
Operating System | contiki-ng | contiki-ng_tinydtls | ≤ 2018-08-30 | Yes |