Vulnerabilities > CVE-2018-20578 - Infinite Loop vulnerability in Nuttx

CVSS 7.5 - HIGH

Attack vector

NETWORK

Attack complexity

LOW

Privileges required

NONE

Confidentiality impact

NONE

Integrity impact

NONE

Availability impact

HIGH

network

low complexity

nuttx

CWE-835

NVD

Published: 2018-12-28

Updated: 2019-10-03

Summary

An issue was discovered in NuttX before 7.27. The function netlib_parsehttpurl() in apps/netutils/netlib/netlib_parsehttpurl.c mishandles URLs longer than hostlen bytes (in the webclient, this is set by default to 40), leading to an Infinite Loop. The attack vector is the Location header of an HTTP 3xx response.

Vulnerable Configurations

Part	Description	Count
Application	Nuttx Nuttx Nuttx 0.1.0 Nuttx Nuttx 0.1.1 Nuttx Nuttx 0.1.2 Nuttx Nuttx 0.2.1 Nuttx Nuttx 0.2.2 Nuttx Nuttx 0.2.3 Nuttx Nuttx 0.2.4 Nuttx Nuttx 0.2.5 Nuttx Nuttx 0.2.6 Nuttx Nuttx 0.2.7 Nuttx Nuttx 0.2.8 Nuttx Nuttx 0.3.0 Nuttx Nuttx 0.3.1 Nuttx Nuttx 0.3.2 Nuttx Nuttx 0.3.3 Nuttx Nuttx 0.3.4 Nuttx Nuttx 0.3.5	17

Common Weakness Enumeration (CWE)

CWE-835 - Loop with Unreachable Exit Condition ('Infinite Loop')

Summary

Vulnerable Configurations

Common Weakness Enumeration (CWE)

References