CVE-2024-40494

See a problem?
Please try reporting it to the source first.

Source

https://nvd.nist.gov/vuln/detail/CVE-2024-40494

Import Source

https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2024-40494.json

JSON Data

https://api.osv.dev/v1/vulns/CVE-2024-40494

Published

2024-10-22T22:15:04Z

Modified

2025-06-27T04:26:39Z

Summary

[none]

Details

Buffer Overflow in coap_msg.c in FreeCoAP allows remote attackers to execute arbitrary code or cause a denial of service (stack buffer overflow) via a crafted packet.

References

https://github.com/dqp10515/security/tree/main/FreeCoAP_bug
https://gist.github.com/dqp10515/e9d7d663cb89187bfe7b39bb3aeb0113

Affected packages

Git / github.com/keith-cullen/freecoap

Affected ranges

Type: GIT
Repo: https://github.com/keith-cullen/freecoap
Events: Introduced

0 Unknown introduced commit / All previous commits are affected

Last affected

dffe8a210de37e18caf59a60413ea7ae7b4092da