CVE-2020-22284

Severity CVSS v4.0:
Pending analysis
Type:
CWE-120 Buffer Copy without Checking Size of Input ('Classic Buffer Overflow')
Publication date:
22/07/2021
Last modified:
29/07/2021

Description

A buffer overflow vulnerability in the zepif_linkoutput() function of Free Software Foundation lwIP git head version and version 2.1.2 allows attackers to access sensitive information via a crafted 6LoWPAN packet.

Vulnerable products and versions

CPE From Up to
cpe:2.3:a:lwip_project:lwip:2.1.2:*:*:*:*:*:*:*


References to Advisories, Solutions, and Tools