CVE-2019-17211
Last modified
CVE-2019-17211 is a critical-severity vulnerability rated 9.8/10 on the CVSS scale. An integer overflow was discovered in the CoAP library in Arm Mbed OS 5.14.0. The function sn_coap_builder_calc_needed_packet_data_size_2() is used to calculate the required memory for the CoAP message from the sn_coap_hdr_s data structure. EPSS estimates a 2.57% chance of exploitation in the next 30 days.
Description
An integer overflow was discovered in the CoAP library in Arm Mbed OS 5.14.0. The function sn_coap_builder_calc_needed_packet_data_size_2() is used to calculate the required memory for the CoAP message from the sn_coap_hdr_s data structure. Both returned_byte_count and src_coap_msg_ptr->payload_len are of type uint16_t. When added together, the result returned_byte_count can wrap around the maximum uint16_t value. As a result, insufficient buffer space is allocated for the corresponding CoAP message.
Metrics
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
Weakness Enumeration
Affected Software
| Vendor | Product | Versions |
|---|---|---|
| Mbed | Mbed | 5.13.2 |
| Mbed | Mbed | 5.14.0 |
References
- https://github.com/ARMmbed/mbed-os/issues/11804Exploit, Issue Tracking, Third Party Advisory
- https://github.com/ARMmbed/mbed-os/issues/11804Exploit, Issue Tracking, Third Party Advisory
Timeline
- Published
- Last Modified
- Status
- Modified
Frequently Asked Questions
What is CVE-2019-17211?
How severe is CVE-2019-17211?
How do I fix CVE-2019-17211?
Are you affected by CVE-2019-17211?
Run a free Strix scan to check your systems for this vulnerability.
Scan your code nowSource: NVD / NIST