Vulnerabilities > Riot OS > Critical

DATE CVE VULNERABILITY TITLE RISK
2023-05-30 CVE-2023-33975 Out-of-bounds Write vulnerability in Riot-Os Riot
RIOT-OS, an operating system for Internet of Things (IoT) devices, contains a network stack with the ability to process 6LoWPAN frames.
network
low complexity
riot-os CWE-787
critical
 9.8
9.8
2023-04-24 CVE-2023-24823 Unspecified vulnerability in Riot-Os Riot
RIOT-OS, an operating system that supports Internet of Things devices, contains a network stack with the ability to process 6LoWPAN frames.
network
low complexity
riot-os
critical
 9.8
9.8
2023-04-24 CVE-2023-24819 Out-of-bounds Write vulnerability in Riot-Os Riot
RIOT-OS, an operating system that supports Internet of Things devices, contains a network stack with the ability to process 6LoWPAN frames.
network
low complexity
riot-os CWE-787
critical
 9.8
9.8
2022-05-03 CVE-2021-27427 Unspecified vulnerability in Riot-Os Riot 2020.01.1
RIOT OS version 2020.01.1 is vulnerable to integer wrap-around in its implementation of calloc function, which can lead to arbitrary memory allocation, resulting in unexpected behavior such as a crash or a remote code injection/execution.
network
low complexity
riot-os
critical
 9.8
9.8
2021-04-06 CVE-2021-27698 Classic Buffer Overflow vulnerability in Riot-Os Riot 2021.01
RIOT-OS 2021.01 contains a buffer overflow vulnerability in /sys/net/gnrc/routing/rpl/gnrc_rpl_control_messages.c through the _parse_options() function.
network
low complexity
riot-os CWE-120
critical
 9.8
9.8
2021-04-06 CVE-2021-27697 Classic Buffer Overflow vulnerability in Riot-Os Riot 2021.01
RIOT-OS 2021.01 contains a buffer overflow vulnerability in sys/net/gnrc/routing/rpl/gnrc_rpl_validation.c through the gnrc_rpl_validation_options() function.
network
low complexity
riot-os CWE-120
critical
 9.8
9.8
2021-04-06 CVE-2021-27357 Classic Buffer Overflow vulnerability in Riot-Os Riot 2021.01
RIOT-OS 2020.01 contains a buffer overflow vulnerability in /sys/net/gnrc/routing/rpl/gnrc_rpl_control_messages.c.
network
low complexity
riot-os CWE-120
critical
 9.8
9.8
2020-07-07 CVE-2020-15350 Incorrect Calculation of Buffer Size vulnerability in Riot-Os Riot 2020.04
RIOT 2020.04 has a buffer overflow in the base64 decoder.
network
low complexity
riot-os CWE-131
critical
 9.8
9.8
2019-02-04 CVE-2019-1000006 Out-of-bounds Write vulnerability in Riot-Os Riot
RIOT RIOT-OS version after commit 7af03ab624db0412c727eed9ab7630a5282e2fd3 contains a Buffer Overflow vulnerability in sock_dns, an implementation of the DNS protocol utilizing the RIOT sock API that can result in Remote code executing.
network
low complexity
riot-os CWE-787
critical
 9.8
9.8