CVE-2018-16601 : An issue was discovered in Amazon Web Services (AWS) FreeRTOS through 1.3.1, Fre

An issue was discovered in Amazon Web Services (AWS) FreeRTOS through 1.3.1, FreeRTOS up to V10.0.1 (with FreeRTOS+TCP), and WITTENSTEIN WHIS Connect middleware TCP/IP component. A crafted IP header triggers a full memory space copy in prvProcessIPPacket, leading to denial of service and possibly remote code execution.

Published 2018-12-06 23:29:01

Updated 2019-01-03 23:59:34

Source MITRE

View at NVD, CVE.org

Vulnerability category: Execute codeDenial of service

Products affected by CVE-2018-16601

Amazon » Amazon Web Services Freertos
Versions up to, including, (<=) 1.3.1
cpe:2.3:a:amazon:amazon_web_services_freertos:*:*:*:*:*:*:*:*
Matching versions
Amazon » Freertos
Versions up to, including, (<=) 10.0.1
cpe:2.3:a:amazon:freertos:*:*:*:*:*:*:*:*
Matching versions

Exploit prediction scoring system (EPSS) score for CVE-2018-16601

EPSS FAQ

3.47%

Probability of exploitation activity in the next 30 days EPSS Score History

~ 86 %

Percentile, the proportion of vulnerabilities that are scored at or less

CVSS scores for CVE-2018-16601

Base Score	Base Severity	CVSS Vector	Exploitability Score	Impact Score	Score Source
6.8	MEDIUM	AV:N/AC:M/Au:N/C:P/I:P/A:P	8.6	6.4	NIST
Access Vector: Network Access Complexity: Medium Authentication: None Confidentiality Impact: Partial Integrity Impact: Partial Availability Impact: Partial
8.1	HIGH	CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H	2.2	5.9	NIST
Attack Vector: Network Attack Complexity: High Privileges Required: None User Interaction: None Scope: Unchanged Confidentiality: High Integrity: High Availability: High

CWE ids for CVE-2018-16601

CWE-191 Integer Underflow (Wrap or Wraparound)

The product subtracts one value from another, such that the result is less than the minimum allowable integer value, which produces a value that is not equal to the correct result.

Assigned by: nvd@nist.gov (Primary)

References for CVE-2018-16601

https://github.com/aws/amazon-freertos/blob/v1.3.2/CHANGELOG.md

amazon-freertos/CHANGELOG.md at v1.3.2 · aws/amazon-freertos · GitHub
Release Notes;Third Party Advisory

CVEs referencing this url
https://blog.zimperium.com/freertos-tcpip-stack-vulnerabilities-put-wide-range-devices-risk-compromise-smart-homes-critical-infrastructure-systems/

FreeRTOS TCP/IP Stack Vulnerabilities Put A Wide Range of Devices at Risk of Compromise: From Smart Homes to Critical Infrastructure Systems | Zimperium Mobile Security Blog
Third Party Advisory

CVEs referencing this url
https://blog.zimperium.com/freertos-tcpip-stack-vulnerabilities-details/

FreeRTOS TCP/IP Stack Vulnerabilities - The Details | Zimperium Mobile Security Blog
Exploit;Third Party Advisory

CVEs referencing this url

Jump to

Vulnerability Details : CVE-2018-16601

Products affected by CVE-2018-16601

Exploit prediction scoring system (EPSS) score for CVE-2018-16601

CVSS scores for CVE-2018-16601

CWE ids for CVE-2018-16601

References for CVE-2018-16601