CVE-2018-20579
on github
Published
Severity
CVSS v3:
7.1 HIGH
CVSS v2:
3.6 LOW
Description
Contiki-NG before 4.2 has a stack-based buffer overflow in the push function in os/lib/json/jsonparse.c that allows an out-of-bounds write of an '{' or '[' character.
References
Configurations
| CPE23 | Version Start | Version End | Exact Version |
|---|---|---|---|
| cpe:2.3:o:contiki-ng_project:contiki-ng:4.2:*:*:*:*:*:*:* | n/a | n/a | 4.2 |