An issue was discovered in Contiki-NG tinyDTLS through 2018-08-30. One incorrect handshake could complete with different epoch numbers in the packets Client_Hello, Client_key_exchange, and Change_cipher_spec, which may cause denial of service.
The vulnerability lies in improper exception handling during the DTLS connection negotiation process (handshake). An attacker can send Client_Hello, Client_key_exchange, and Change_cipher_spec packets containing different, inconsistent epoch numbers. The tinyDTLS library accepts such an invalid handshake as complete, leading to an unexpected application state and potentially triggering a denial of service.
An unauthenticated remote attacker can disrupt the availability of a device or service using the tinyDTLS library, causing a denial of service.
Apply patches available from the vendor according to the references provided. It is recommended to monitor the Contiki-NG/tinydtls GitHub repository to obtain the latest fix.
Contiki-NG tinyDTLS in versions up to and including 2018-08-30
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:HContiki Ng Tinydtls
APPContiki-Ng≤ 2018-08-30
Related vulnerabilities
Nieskończona pętla i buffer over-read w Contiki-NG tinyDTLS (DTLS ClientHello)
Buffer over-read w Contiki-NG tinyDTLS — zdalne DoS przez spreparowany pakiet
Nieprawidłowa obsługa dużego numeru epoki w Contiki-NG tinyDTLS — DoS i fałszywe odrzucanie pakietów
An assertion failure discovered in in check_certificate_request() in Contiki-NG tinyDTLS through master branch...
An issue was discovered in Contiki-NG tinyDTLS through master branch 53a0d97. DTLS servers allow remote attack...