Libcoap

Libcoap

19 Schwachstellen gefunden.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
8.8

CVE-2026-29013

  • EPSS 0.05%
  • Veröffentlicht 17.04.2026 21:11:38
  • Zuletzt bearbeitet 20.04.2026 19:05:30

libcoap contains out-of-bounds read vulnerabilities in OSCORE Appendix B.2 CBOR unwrap handling where get_byte_inc() in src/oscore/oscore_cbor.c relies solely on assert() for bounds checking, which is removed in release builds compiled with NDEBUG. A...

9.8

CVE-2025-34468

  • EPSS 0.42%
  • Veröffentlicht 31.12.2025 18:39:07
  • Zuletzt bearbeitet 14.01.2026 20:18:32

libcoap versions up to and including 4.3.5, prior to commit 30db3ea, contain a stack-based buffer overflow in address resolution when attacker-controlled hostname data is copied into a fixed 256-byte stack buffer without proper bounds checking. A rem...

6.5

CVE-2025-59391

  • EPSS 0.1%
  • Veröffentlicht 08.12.2025 17:16:20
  • Zuletzt bearbeitet 12.12.2025 12:34:00

A memory disclosure vulnerability exists in libcoap's OSCORE configuration parser in libcoap before release-4.3.5-patches. An out-of-bounds read may occur when parsing certain configuration values, allowing an attacker to infer or read memory beyond ...

7.5

CVE-2025-65495

  • EPSS 0.15%
  • Veröffentlicht 24.11.2025 00:00:00
  • Zuletzt bearbeitet 01.12.2025 17:15:30

Integer signedness error in tls_verify_call_back() in src/coap_openssl.c in OISM libcoap 4.3.5 allows remote attackers to cause a denial of service via a crafted TLS certificate that causes i2d_X509() to return -1 and be misused as a malloc() size pa...

4.3

CVE-2025-65501

  • EPSS 0.14%
  • Veröffentlicht 24.11.2025 00:00:00
  • Zuletzt bearbeitet 01.12.2025 16:18:11

Null pointer dereference in coap_dtls_info_callback() in OISM libcoap 4.3.5 allows remote attackers to cause a denial of service via a DTLS handshake where SSL_get_app_data() returns NULL.

4.3

CVE-2025-65500

  • EPSS 0.14%
  • Veröffentlicht 24.11.2025 00:00:00
  • Zuletzt bearbeitet 01.12.2025 16:28:13

NULL pointer dereference in coap_dtls_generate_cookie() in src/coap_openssl.c in OISM libcoap 4.3.5 allows remote attackers to cause a denial of service via a crafted DTLS handshake that triggers SSL_get_SSL_CTX() to return NULL.

4.3

CVE-2025-65499

  • EPSS 0.14%
  • Veröffentlicht 24.11.2025 00:00:00
  • Zuletzt bearbeitet 01.12.2025 16:29:53

Array index error in tls_verify_call_back() in src/coap_openssl.c in OISM libcoap 4.3.5 allows remote attackers to cause a denial of service via a crafted DTLS handshake that triggers SSL_get_ex_data_X509_STORE_CTX_idx() to return -1.

4.3

CVE-2025-65498

  • EPSS 0.14%
  • Veröffentlicht 24.11.2025 00:00:00
  • Zuletzt bearbeitet 01.12.2025 16:31:43

NULL pointer dereference in coap_dtls_generate_cookie() in src/coap_openssl.c in OISM libcoap 4.3.5 allows remote attackers to cause a denial of service via a crafted DTLS handshake that triggers SSL_get_SSL_CTX() to return NULL.

4.3

CVE-2025-65497

  • EPSS 0.14%
  • Veröffentlicht 24.11.2025 00:00:00
  • Zuletzt bearbeitet 01.12.2025 16:55:53

NULL pointer dereference in coap_dtls_generate_cookie() in src/coap_openssl.c in OISM libcoap 4.3.5 allows remote attackers to cause a denial of service via a crafted DTLS handshake that triggers SSL_get_SSL_CTX() to return NULL.

4.3

CVE-2025-65496

  • EPSS 0.14%
  • Veröffentlicht 24.11.2025 00:00:00
  • Zuletzt bearbeitet 01.12.2025 17:00:40

NULL pointer dereference in coap_dtls_generate_cookie() in src/coap_openssl.c in OISM libcoap 4.3.5 allows remote attackers to cause a denial of service via a crafted DTLS handshake that triggers SSL_get_SSL_CTX() to return NULL.