ID CVE-2019-17389
Summary In RIOT 2019.07, the MQTT-SN implementation (asymcute) mishandles errors occurring during a read operation on a UDP socket. The receive loop ends. This allows an attacker (via a large packet) to prevent a RIOT MQTT-SN client from working until the device is restarted.
References
Vulnerable Configurations
CVSS
Base: None
Impact:
Exploitability:
Last major update 09-10-2019 - 13:15
Published 09-10-2019 - 13:15
Last modified 09-10-2019 - 15:44
Back to Top