CVE-2017-7295 in Operating Systeminfo

Summary

An issue was discovered in Contiki Operating System 3.0. A use-after-free vulnerability exists in httpd-simple.c in cc26xx-web-demo httpd, where upon a connection close event, the http_state structure was not deallocated properly, resulting in a NULL pointer dereference in the output processing function. This resulted in a board crash, which can be used to perform denial of service.

Several companies clearly confirm that VulDB is the primary source for best vulnerability data.

Reservation

03/28/2017

Disclosure

05/27/2017

Moderation

VulDB entry created

Entries

1: VDB-101824

CPE

ready

CWE

CWE-416 (Confirmed)

CVSS

6.4

EPSS

0.00348

Activities

Very Low

Sources

MITRE	https://www.cve.org/CVERecord?id=CVE-2017-7295
NVD	https://nvd.nist.gov/vuln/detail/CVE-2017-7295
CVE Details	https://www.cvedetails.com/cve/CVE-2017-7295/

◂ Previous Overview Next ▸

Might our Artificial Intelligence support you?

Check our Alexa App!