Details of VAR-202212-1783

ID

VAR-202212-1783

CVE

CVE-2022-41972

TITLE

Contiki-NG In NULL Pointer dereference vulnerability

Trust: 0.8

sources: JVNDB: JVNDB-2022-023971

DESCRIPTION

Contiki-NG is an open-source, cross-platform operating system for Next-Generation IoT devices. Versions prior to 4.9 contain a NULL Pointer Dereference in BLE L2CAP module. The Contiki-NG operating system for IoT devices contains a Bluetooth Low Energy stack. An attacker can inject a packet in this stack, which causes the implementation to dereference a NULL pointer and triggers undefined behavior. More specifically, while processing the L2CAP protocol, the implementation maps an incoming channel ID to its metadata structure. In this structure, state information regarding credits is managed through calls to the function input_l2cap_credit in the module os/net/mac/ble/ble-l2cap.c. Unfortunately, the input_l2cap_credit function does not check that the metadata corresponding to the user-supplied channel ID actually exists, which can lead to the channel variable being set to NULL before a pointer dereferencing operation is performed. The vulnerability has been patched in the "develop" branch of Contiki-NG, and will be included in release 4.9. Users can apply the patch in Contiki-NG pull request #2253 as a workaround until the new package is released. Contiki-NG for, NULL There is a vulnerability in pointer dereference.Service operation interruption (DoS) It may be in a state

Trust: 2.25

sources: NVD: CVE-2022-41972 // JVNDB: JVNDB-2022-023971 // CNNVD: CNNVD-202212-3423 // VULMON: CVE-2022-41972

AFFECTED PRODUCTS

vendor:	contiki ng	model:	contiki-ng	scope:	lte	version:	4.8	Trust: 1.0
vendor:	contiki ng	model:	contiki-ng	scope:	lte	version:	4.8 and earlier	Trust: 0.8
vendor:	contiki ng	model:	contiki-ng	scope:	eq	version:	-	Trust: 0.8
vendor:	contiki ng	model:	contiki-ng	scope:	-	version:	-	Trust: 0.8

sources: JVNDB: JVNDB-2022-023971 // NVD: CVE-2022-41972

CVSS

SEVERITY

CVSSV2

CVSSV3

nvd@nist.gov:	CVE-2022-41972
value:	MEDIUM
Trust: 1.0
security-advisories@github.com:	CVE-2022-41972
value:	LOW
Trust: 1.0
NVD:	CVE-2022-41972
value:	MEDIUM
Trust: 0.8
CNNVD:	CNNVD-202212-3423
value:	MEDIUM
Trust: 0.6

nvd@nist.gov:	CVE-2022-41972
baseSeverity:	MEDIUM
baseScore:	6.5
vectorString:	CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
attackVector:	ADJACENT
attackComplexity:	LOW
privilegesRequired:	NONE
userInteraction:	NONE
scope:	UNCHANGED
confidentialityImpact:	NONE
integrityImpact:	NONE
availabilityImpact:	HIGH
exploitabilityScore:	2.8
impactScore:	3.6
version:	3.1
Trust: 1.0
security-advisories@github.com:	CVE-2022-41972
baseSeverity:	LOW
baseScore:	2.9
vectorString:	CVSS:3.1/AV:L/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:L
attackVector:	LOCAL
attackComplexity:	HIGH
privilegesRequired:	NONE
userInteraction:	NONE
scope:	UNCHANGED
confidentialityImpact:	NONE
integrityImpact:	NONE
availabilityImpact:	LOW
exploitabilityScore:	1.4
impactScore:	1.4
version:	3.1
Trust: 1.0
NVD:	CVE-2022-41972
baseSeverity:	MEDIUM
baseScore:	6.5
vectorString:	CVSS:3.0/AV:A/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
attackVector:	ADJACENT NETWORK
attackComplexity:	LOW
privilegesRequired:	NONE
userInteraction:	NONE
scope:	UNCHANGED
confidentialityImpact:	NONE
integrityImpact:	NONE
availabilityImpact:	HIGH
exploitabilityScore:	NONE
impactScore:	NONE
version:	3.0
Trust: 0.8

sources: JVNDB: JVNDB-2022-023971 // CNNVD: CNNVD-202212-3423 // NVD: CVE-2022-41972 // NVD: CVE-2022-41972

PROBLEMTYPE DATA

problemtype:	CWE-476	Trust: 1.0
problemtype:	NULL Pointer dereference (CWE-476) [ others ]	Trust: 0.8

sources: JVNDB: JVNDB-2022-023971 // NVD: CVE-2022-41972

THREAT TYPE

remote or local

Trust: 0.6

sources: CNNVD: CNNVD-202212-3423

TYPE

code problem

Trust: 0.6

sources: CNNVD: CNNVD-202212-3423

PATCH

title:

Contiki-NG Fixes for code issue vulnerabilities

url:

http://123.124.177.30/web/xxk/bdxqById.tag?id=219182

Trust: 0.6

sources: CNNVD: CNNVD-202212-3423

EXTERNAL IDS

db:	NVD	id:	CVE-2022-41972	Trust: 3.3
db:	JVNDB	id:	JVNDB-2022-023971	Trust: 0.8
db:	CNNVD	id:	CNNVD-202212-3423	Trust: 0.6
db:	VULMON	id:	CVE-2022-41972	Trust: 0.1

sources: VULMON: CVE-2022-41972 // JVNDB: JVNDB-2022-023971 // CNNVD: CNNVD-202212-3423 // NVD: CVE-2022-41972

REFERENCES

url:	https://github.com/contiki-ng/contiki-ng/pull/2253	Trust: 2.5
url:	https://github.com/contiki-ng/contiki-ng/security/advisories/ghsa-24xp-g5gf-6vvm	Trust: 2.5
url:	https://nvd.nist.gov/vuln/detail/cve-2022-41972	Trust: 0.8
url:	https://cxsecurity.com/cveshow/cve-2022-41972/	Trust: 0.6
url:	https://cwe.mitre.org/data/definitions/476.html	Trust: 0.1
url:	https://nvd.nist.gov	Trust: 0.1

sources: VULMON: CVE-2022-41972 // JVNDB: JVNDB-2022-023971 // CNNVD: CNNVD-202212-3423 // NVD: CVE-2022-41972

SOURCES

db:	VULMON	id:	CVE-2022-41972
db:	JVNDB	id:	JVNDB-2022-023971
db:	CNNVD	id:	CNNVD-202212-3423
db:	NVD	id:	CVE-2022-41972

LAST UPDATE DATE

2024-08-14T14:43:33+00:00

SOURCES UPDATE DATE

db:	VULMON	id:	CVE-2022-41972	date:	2022-12-16T00:00:00
db:	JVNDB	id:	JVNDB-2022-023971	date:	2023-11-30T04:48:00
db:	CNNVD	id:	CNNVD-202212-3423	date:	2022-12-28T00:00:00
db:	NVD	id:	CVE-2022-41972	date:	2022-12-27T17:18:09.363

SOURCES RELEASE DATE

db:	VULMON	id:	CVE-2022-41972	date:	2022-12-16T00:00:00
db:	JVNDB	id:	JVNDB-2022-023971	date:	2023-11-30T00:00:00
db:	CNNVD	id:	CNNVD-202212-3423	date:	2022-12-16T00:00:00
db:	NVD	id:	CVE-2022-41972	date:	2022-12-16T18:15:08.487