CVE-2021-38311
First published: Mon Aug 09 2021(Updated: )
In Contiki 3.0, potential nonterminating acknowledgment loops exist in the Telnet service. When the negotiated options are already disabled, servers still respond to DONT and WONT requests with WONT or DONT commands, which may lead to infinite acknowledgment loops, denial of service, and excessive CPU consumption.
Credit: cve@mitre.org
| Affected Software | Affected Version | How to fix |
|---|---|---|
| Contiki-os Contiki | =3.0 |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
Frequently Asked Questions
What is the vulnerability ID for this vulnerability?
The vulnerability ID for this vulnerability is CVE-2021-38311.
What is the severity rating of CVE-2021-38311?
CVE-2021-38311 has a severity rating of 7.5 (high).
What is the affected software for CVE-2021-38311?
The affected software for CVE-2021-38311 is Contiki-os Contiki 3.0.
What is the impact of CVE-2021-38311?
CVE-2021-38311 may lead to infinite acknowledgment loops, denial of service, and excessive CPU usage.
Is there a fix available for CVE-2021-38311?
At the moment, there is no known fix available for CVE-2021-38311. It is recommended to follow the mitigation steps provided by the vendor or consider implementing additional security measures.
- collector/nvd-index
- agent/references
- agent/weakness
- agent/last-modified-date
- agent/remedy
- agent/author
- agent/softwarecombine
- agent/severity
- agent/tags
- agent/event
- agent/type
- agent/first-publish-date
- agent/description
- collector/mitre-cve
- source/MITRE
- vendor/contiki-os
- canonical/contiki-os contiki
- version/contiki-os contiki/3.0