CVE-2020-22284

See a problem?
Please try reporting it to the source first.
Source
https://nvd.nist.gov/vuln/detail/CVE-2020-22284
Import Source
https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2020-22284.json
JSON Data
https://api.osv.dev/v1/vulns/CVE-2020-22284
Downstream
Published
2021-07-22T20:15:07Z
Modified
2025-10-10T02:46:45.006055Z
Severity
  • 7.5 (High) CVSS_V3 - CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N CVSS Calculator
Summary
[none]
Details

A buffer overflow vulnerability in the zepif_linkoutput() function of Free Software Foundation lwIP git head version and version 2.1.2 allows attackers to access sensitive information via a crafted 6LoWPAN packet.

References

Affected packages

Git / git.savannah.nongnu.org/git/lwip.git

Affected ranges

Type
GIT
Repo
https://git.savannah.nongnu.org/git/lwip.git
Events
Introduced
0 Unknown introduced commit / All previous commits are affected
Last affected
159e31b689577dbf69cf0683bbaffbd71fa5ee10

Affected versions

Other

POST_PACK_REMOVE
POST_REMOVE_ARCH
PRE_ARCH_MOVE
PRE_PACK_REMOVE
PRE_leon-dhcp
STABLE-0_6_4
STABLE-0_6_5
STABLE-0_7_0
STABLE-1_0_0
STABLE-1_1_0
STABLE-1_1_0-RC1
STABLE-1_1_1
STABLE-1_3_0
STABLE-1_3_0-RC1
STABLE-1_3_1
STABLE-1_3_1-RC1
STABLE-1_3_1-RC2
STABLE-1_3_1-RC3
STABLE-1_3_2
STABLE-1_3_2-RC1
STABLE-1_4_0
STABLE-1_4_0-RC1
STABLE-1_4_0-RC2
STABLE-2_1_0_RC1
STABLE-2_1_0_RELEASE
STABLE-2_1_1_RELEASE
STABLE-2_1_2_RELEASE
cvs-repository-moved-to-git
master_at_STABLE-2_0_0
merged_from_main_to_DEVEL
merged_from_main_to_STABLE
merged_from_main_to_STABLE-0_7

Database specific

source

"https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2020-22284.json"