Vulnerabilities > CVE-2021-46901 - Out-of-bounds Write vulnerability in Cetic Cetic-6Lbr 1.5.0

CVSS 7.5 - HIGH

Attack vector

NETWORK

Attack complexity

LOW

Privileges required

NONE

Confidentiality impact

NONE

Integrity impact

NONE

Availability impact

HIGH

network

low complexity

cetic

CWE-787

NVD

Published: 2023-12-31

Updated: 2024-11-21

Summary

examples/6lbr/apps/6lbr-webserver/httpd.c in CETIC-6LBR (aka 6lbr) 1.5.0 has a strcat stack-based buffer overflow via a request for a long URL over a 6LoWPAN network.

Vulnerable Configurations

Part	Description	Count
OS	Cetic Cetic Cetic 6Lbr 1.5.0	1

Common Weakness Enumeration (CWE)

CWE-787 - Out-of-bounds Write

References

https://github.com/cetic/6lbr/blob/c3092a1ccc6b6b0e668f33f6f4b2d6967975d664/examples/6lbr/apps/6lbr-webserver/httpd.c#L119
https://github.com/cetic/6lbr/blob/c3092a1ccc6b6b0e668f33f6f4b2d6967975d664/examples/6lbr/apps/6lbr-webserver/httpd.c#L119
https://github.com/cetic/6lbr/issues/414
https://github.com/cetic/6lbr/issues/414