First published: Tue Feb 01 2022(Updated: )
In Eclipse Wakaama, ever since its inception until 2021-01-14, the CoAP parsing code does not properly sanitize network-received data.
Credit: emo@eclipse.org
Affected Software | Affected Version | How to fix |
---|---|---|
Eclipse Wakaama | =1.0 |
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
CVE-2021-41040 is a vulnerability in Eclipse Wakaama that allows network-received data to be improperly sanitized in the CoAP parsing code.
CVE-2021-41040 has a severity rating of 7.5 (High).
Eclipse Wakaama version 1.0 is affected by CVE-2021-41040.
To fix CVE-2021-41040, you should update Eclipse Wakaama to a version that includes the necessary patch or fix.
You can find more information about CVE-2021-41040 in the referenced links: https://bugs.eclipse.org/bugs/show_bug.cgi?id=577968 and https://github.com/eclipse/wakaama/pull/640.