Vulnerabilities > CVE-2021-33889 - Out-of-bounds Write vulnerability in Openthread Wpantund 20200528

047910
CVSS 4.6 - MEDIUM
Attack vector
LOCAL
Attack complexity
LOW
Privileges required
NONE
Confidentiality impact
PARTIAL
Integrity impact
PARTIAL
Availability impact
PARTIAL
local
low complexity
openthread
CWE-787

Summary

OpenThread wpantund through 2021-07-02 has a stack-based Buffer Overflow because of an inconsistency in the integer data type for metric_len.

Vulnerable Configurations

Part Description Count
Application
Openthread
1

Common Weakness Enumeration (CWE)