A vulnerability was found in Amazon Web Services FreeRTOS, FreeRTOS and WITTENSTEIN WHIS Connect Middleware (Middleware). It has been classified as problematic. Affected is the function prvProcessICMPPacket. The manipulation as part of a ICMP Packet leads to a information disclosure vulnerability. CWE is classifying the issue as CWE-200. The product exposes sensitive information to an actor that is not explicitly authorized to have access to that information. This is going to have an impact on confidentiality. CVE summarizes:

Amazon Web Services (AWS) FreeRTOS through 1.3.1, FreeRTOS up to V10.0.1 (with FreeRTOS+TCP), and WITTENSTEIN WHIS Connect middleware TCP/IP component allow information disclosure during parsing of ICMP packets in prvProcessICMPPacket.

The bug was discovered 10/18/2018. The weakness was shared 12/06/2018 (GitHub Repository). The advisory is shared for download at github.com. This vulnerability is traded as CVE-2018-16527 since 09/05/2018. It is possible to launch the attack remotely. The exploitation doesn't require any form of authentication. There are known technical details, but no exploit is available. The MITRE ATT&CK project declares the attack technique as T1592.

The vulnerability was handled as a non-public zero-day exploit for at least 49 days. During that time the estimated underground price was around $0-$5k.

Upgrading eliminates this vulnerability.

The entries 127642, 127643, 127645 and 127639 are related to this item.

Affected

• Amazon Web Services FreeRTOS up to 1.3.1
• FreeRTOS up to 10.0.1
• WITTENSTEIN WHIS Connect Middleware

Productinfo

Type

• Middleware

Name

• Amazon Web Services FreeRTOS
• FreeRTOS
• WITTENSTEIN WHIS Connect Middleware

License

• commercial

CPE 2.3info

• 🔍
• 🔍
• 🔍

CPE 2.2info

• 🔍
• 🔍
• 🔍

CVSSv4info

CVSSv3info

CVSSv2info

Exploitinginfo

Threat Intelligenceinfo

Countermeasuresinfo

Timelineinfo

Sourcesinfo

Entryinfo

Discussion