Details of VAR-202411-3519

ID

VAR-202411-3519

CVE

CVE-2023-29001

TITLE

Contiki-NG Recursion control vulnerability in

Trust: 0.8

sources: JVNDB: JVNDB-2023-028579

DESCRIPTION

Contiki-NG is an open-source, cross-platform operating system for IoT devices. The Contiki-NG operating system processes source routing headers (SRH) in its two alternative RPL protocol implementations. The IPv6 implementation uses the results of this processing to determine whether an incoming packet should be forwarded to another host. Because of missing validation of the resulting next-hop address, an uncontrolled recursion may occur in the tcpip_ipv6_output function in the os/net/ipv6/tcpip.c module when receiving a packet with a next-hop address that is a local address. Attackers that have the possibility to send IPv6 packets to the Contiki-NG host can therefore trigger deeply nested recursive calls, which can cause a stack overflow. The vulnerability has not been patched in the current release of Contiki-NG, but is expected to be patched in the next release. The problem can be fixed by applying the patch in Contiki-NG pull request #2264. Users are advised to either apply the patch manually or to wait for the next release. There are no known workarounds for this vulnerability. Contiki-NG Exists in a recursive control vulnerability.Service operation interruption (DoS) It may be in a state

Trust: 1.62

sources: NVD: CVE-2023-29001 // JVNDB: JVNDB-2023-028579

AFFECTED PRODUCTS

vendor:	contiki ng	model:	contiki-ng	scope:	lte	version:	4.9	Trust: 1.0
vendor:	contiki ng	model:	contiki-ng	scope:	lte	version:	4.9 and earlier	Trust: 0.8
vendor:	contiki ng	model:	contiki-ng	scope:	-	version:	-	Trust: 0.8
vendor:	contiki ng	model:	contiki-ng	scope:	eq	version:	-	Trust: 0.8

sources: JVNDB: JVNDB-2023-028579 // NVD: CVE-2023-29001

CVSS

SEVERITY

CVSSV2

CVSSV3

nvd@nist.gov:	CVE-2023-29001
value:	HIGH
Trust: 1.0
security-advisories@github.com:	CVE-2023-29001
value:	HIGH
Trust: 1.0
NVD:	CVE-2023-29001
value:	HIGH
Trust: 0.8

nvd@nist.gov:	CVE-2023-29001
baseSeverity:	HIGH
baseScore:	7.5
vectorString:	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
attackVector:	NETWORK
attackComplexity:	LOW
privilegesRequired:	NONE
userInteraction:	NONE
scope:	UNCHANGED
confidentialityImpact:	NONE
integrityImpact:	NONE
availabilityImpact:	HIGH
exploitabilityScore:	3.9
impactScore:	3.6
version:	3.1
Trust: 1.0
NVD:	CVE-2023-29001
baseSeverity:	HIGH
baseScore:	7.5
vectorString:	CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
attackVector:	NETWORK
attackComplexity:	LOW
privilegesRequired:	NONE
userInteraction:	NONE
scope:	UNCHANGED
confidentialityImpact:	NONE
integrityImpact:	NONE
availabilityImpact:	HIGH
exploitabilityScore:	NONE
impactScore:	NONE
version:	3.0
Trust: 0.8

sources: JVNDB: JVNDB-2023-028579 // NVD: CVE-2023-29001 // NVD: CVE-2023-29001

PROBLEMTYPE DATA

problemtype:	CWE-674	Trust: 1.0
problemtype:	Inappropriate recursive control (CWE-674) [ others ]	Trust: 0.8

sources: JVNDB: JVNDB-2023-028579 // NVD: CVE-2023-29001

EXTERNAL IDS

db:	NVD	id:	CVE-2023-29001	Trust: 2.6
db:	JVNDB	id:	JVNDB-2023-028579	Trust: 0.8

sources: JVNDB: JVNDB-2023-028579 // NVD: CVE-2023-29001

REFERENCES

url:	https://github.com/contiki-ng/contiki-ng/pull/2264	Trust: 1.8
url:	https://github.com/contiki-ng/contiki-ng/security/advisories/ghsa-7p75-mf53-ffwm	Trust: 1.8
url:	https://nvd.nist.gov/vuln/detail/cve-2023-29001	Trust: 0.8

sources: JVNDB: JVNDB-2023-028579 // NVD: CVE-2023-29001

SOURCES

db:	JVNDB	id:	JVNDB-2023-028579
db:	NVD	id:	CVE-2023-29001

LAST UPDATE DATE

2025-04-13T23:20:18.763000+00:00

SOURCES UPDATE DATE

db:	JVNDB	id:	JVNDB-2023-028579	date:	2025-04-11T14:52:00
db:	NVD	id:	CVE-2023-29001	date:	2025-04-10T14:58:31.463

SOURCES RELEASE DATE

db:	JVNDB	id:	JVNDB-2023-028579	date:	2025-04-11T00:00:00
db:	NVD	id:	CVE-2023-29001	date:	2024-11-27T19:15:31.497