Every CVE whose affected-product data names Contiki-ng Tinydtls, ordered by CVSS severity, with EPSS exploit prediction and CISA KEV status.
CVEs (6)
CVE-2021-42141 — CVSS 9.8 (critical): An issue was discovered in Contiki-NG tinyDTLS through 2018-08-30. One incorrect handshake could complete with different epoch numbers in…
CVE-2021-42142 — CVSS 9.8 (critical): An issue was discovered in Contiki-NG tinyDTLS through master branch 53a0d97. DTLS servers mishandle the early use of a large epoch number…
CVE-2021-42143 — CVSS 9.1 (critical): An issue was discovered in Contiki-NG tinyDTLS through master branch 53a0d97. An infinite loop bug exists during the handling of a…
CVE-2021-42147 — CVSS 9.1 (critical): Buffer over-read vulnerability in the dtls_sha256_update function in Contiki-NG tinyDTLS through master branch 53a0d97 allows remote…
CVE-2021-42145 — CVSS 7.5 (high): An assertion failure discovered in in check_certificate_request() in Contiki-NG tinyDTLS through master branch 53a0d97 allows attackers to…
CVE-2021-42146 — CVSS 7.5 (high): An issue was discovered in Contiki-NG tinyDTLS through master branch 53a0d97. DTLS servers allow remote attackers to reuse the same epoch…