CVE-2018-12679

See a problem?
Please try reporting it to the source first.
Source
https://cve.org/CVERecord?id=CVE-2018-12679
Import Source
https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2018-12679.json
JSON Data
https://api.osv.dev/v1/vulns/CVE-2018-12679
Aliases
Published
2019-04-02T19:29:00.260Z
Modified
2026-04-10T04:05:41.572111Z
Severity
  • 7.5 (High) CVSS_V3 - CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H CVSS Calculator
Summary
[none]
Details

The Serialize.deserialize() method in CoAPthon3 1.0 and 1.0.1 mishandles certain exceptions, leading to a denial of service in applications that use this library (e.g., the standard CoAP server, CoAP client, example collect CoAP server and client) when they receive crafted CoAP messages.

References

Affected packages

Git / github.com/tanganelli/coapthon3

Affected ranges

Type
GIT
Repo
https://github.com/tanganelli/coapthon3
Events
Introduced
0 Unknown introduced commit / All previous commits are affected
Last affected
fe716fff7aec2857761355500ad93b5185c6a427
Introduced
0 Unknown introduced commit / All previous commits are affected
Last affected
357b1afe4d09e6abd79a153111e46a9918b7172c
Database specific 
{
    "versions": [
        {
            "introduced": "0"
        },
        {
            "last_affected": "1.0"
        },
        {
            "introduced": "0"
        },
        {
            "last_affected": "1.0.1"
        }
    ]
}

Affected versions

1.*
1.0
1.0.1
1.01

Database specific

source 
"https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2018-12679.json"