CVE-2018-20579

Published December 28th, 2018

View on NVD ↗

CVSS v3

N/A

CVSS v2

3.6

LOW

Affected

PROJECT

Description

Contiki-NG before 4.2 has a stack-based buffer overflow in the push function in os/lib/json/jsonparse.c that allows an out-of-bounds write of an '{' or '[' character.

contiki-ng/contiki-ng

Contiki-NG: The OS for Next Generation IoT Devices

GitHub

1.5K