CVE-2019-16754

RIOT 2019.07 contains a NULL pointer dereference in the MQTT-SN implementation (asymcute), potentially allowing an attacker to crash a network node running RIOT. This requires spoofing an MQTT server response. To do so, the attacker needs to know the MQTT MsgID of a pending MQTT protocol message and the ephemeral port used by RIOT's MQTT implementation. Additionally, the server IP address is required for spoofing the packet.
References
Link Resource
https://github.com/RIOT-OS/RIOT/pull/12293 Exploit Patch Third Party Advisory
https://github.com/RIOT-OS/RIOT/pull/12293 Exploit Patch Third Party Advisory
Configurations

Configuration 1 (hide)

cpe:2.3:o:riot-os:riot:2019.07:-:*:*:*:*:*:*

History

21 Nov 2024, 04:31

Type Values Removed Values Added
References () https://github.com/RIOT-OS/RIOT/pull/12293 - Exploit, Patch, Third Party Advisory () https://github.com/RIOT-OS/RIOT/pull/12293 - Exploit, Patch, Third Party Advisory

Information

Published : 2019-09-24 18:15

Updated : 2024-11-21 04:31


NVD link : CVE-2019-16754

Mitre link : CVE-2019-16754

CVE.ORG link : CVE-2019-16754


JSON object : View

Products Affected

riot-os

  • riot
CWE
CWE-476

NULL Pointer Dereference