Vulnerabilities > Riot OS > Riot > Critical
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2023-05-30 | CVE-2023-33975 | Out-of-bounds Write vulnerability in Riot-Os Riot RIOT-OS, an operating system for Internet of Things (IoT) devices, contains a network stack with the ability to process 6LoWPAN frames. | 9.8 |
| 2023-04-24 | CVE-2023-24823 | Unspecified vulnerability in Riot-Os Riot RIOT-OS, an operating system that supports Internet of Things devices, contains a network stack with the ability to process 6LoWPAN frames. | 9.8 |
| 2023-04-24 | CVE-2023-24819 | Out-of-bounds Write vulnerability in Riot-Os Riot RIOT-OS, an operating system that supports Internet of Things devices, contains a network stack with the ability to process 6LoWPAN frames. | 9.8 |
| 2022-05-03 | CVE-2021-27427 | Unspecified vulnerability in Riot-Os Riot 2020.01.1 RIOT OS version 2020.01.1 is vulnerable to integer wrap-around in its implementation of calloc function, which can lead to arbitrary memory allocation, resulting in unexpected behavior such as a crash or a remote code injection/execution. | 9.8 |
| 2021-04-06 | CVE-2021-27357 | Classic Buffer Overflow vulnerability in Riot-Os Riot 2021.01 RIOT-OS 2020.01 contains a buffer overflow vulnerability in /sys/net/gnrc/routing/rpl/gnrc_rpl_control_messages.c. | 9.8 |
| 2021-04-06 | CVE-2021-27697 | Classic Buffer Overflow vulnerability in Riot-Os Riot 2021.01 RIOT-OS 2021.01 contains a buffer overflow vulnerability in sys/net/gnrc/routing/rpl/gnrc_rpl_validation.c through the gnrc_rpl_validation_options() function. | 9.8 |
| 2021-04-06 | CVE-2021-27698 | Classic Buffer Overflow vulnerability in Riot-Os Riot 2021.01 RIOT-OS 2021.01 contains a buffer overflow vulnerability in /sys/net/gnrc/routing/rpl/gnrc_rpl_control_messages.c through the _parse_options() function. | 9.8 |
| 2020-07-07 | CVE-2020-15350 | Incorrect Calculation of Buffer Size vulnerability in Riot-Os Riot 2020.04 RIOT 2020.04 has a buffer overflow in the base64 decoder. | 9.8 |
| 2019-02-04 | CVE-2019-1000006 | Out-of-bounds Write vulnerability in Riot-Os Riot RIOT RIOT-OS version after commit 7af03ab624db0412c727eed9ab7630a5282e2fd3 contains a Buffer Overflow vulnerability in sock_dns, an implementation of the DNS protocol utilizing the RIOT sock API that can result in Remote code executing. | 9.8 |