CVE-2025-34468

High CVSS: 8.2

libcoap versions up to and including 4.3.5, prior to commit 30db3ea, contain a stack-based buffer overflow in address resolution when attacker-controlled hostname data is copied into a fixed 256-byte stack buffer without proper bounds checking. A remote attacker can trigger a crash and potentially achieve remote code execution depending on compiler options and runtime memory protections. Exploitation requires the proxy logic to be enabled (i.e., the proxy request handling code path in an application using libcoap).

Vendor

Libcoap

Product

Libcoap

CWE

CWE-121

Yayın Tarihi

2025-12-31 19:15:43

Güncelleme

2026-01-14 20:18:32

Source Identifier

disclosure@vulncheck.com

KEV Date Added

Kategoriler

CWE-121 Libcoap HIGH Libcoap 2025

Referanslar

https://github.com/obgm/libcoap/commit/30db3ea https://github.com/obgm/libcoap/pull/1737 https://libcoap.net/ https://www.vulncheck.com/advisories/libcoap-stack-based-buffer-overflow-in-address-resolution-dos-or-potential-rce

Benzer Kayıtlar

Medium

CVE-2025-59391

A memory disclosure vulnerability exists in libcoap's OSCORE configuration parser in libcoap before release-4.3.5-patche…

High

CVE-2025-65495

Integer signedness error in tls_verify_call_back() in src/coap_openssl.c in OISM libcoap 4.3.5 allows remote attackers t…

Medium

CVE-2025-65496

NULL pointer dereference in coap_dtls_generate_cookie() in src/coap_openssl.c in OISM libcoap 4.3.5 allows remote attack…

Medium

CVE-2025-65497

NULL pointer dereference in coap_dtls_generate_cookie() in src/coap_openssl.c in OISM libcoap 4.3.5 allows remote attack…

Medium

CVE-2025-65498

NULL pointer dereference in coap_dtls_generate_cookie() in src/coap_openssl.c in OISM libcoap 4.3.5 allows remote attack…

Medium

CVE-2025-65499

Array index error in tls_verify_call_back() in src/coap_openssl.c in OISM libcoap 4.3.5 allows remote attackers to cause…