CNNVD-202511-2593 Information

CNNVD ID

CNNVD-202511-2593

Related CVE

CVE-2025-65495

• CNNVD Published: 2025-11-24

Description (Chinese)

libcoap是obgm开源的一个轻量级应用程序协议的 C 实现。 libcoap 4.3.5版本存在安全漏洞，该漏洞源于src/coap_openssl.c中tls_verify_call_back函数整数符号错误，可能导致拒绝服务攻击。

Description (English)

libcoap is the C of a lightweight application protocol from the obgm open source. Version 4.3.5 of libcoap contains a security loophole that originates from an integer symbol error in the src/coap opensl.c.

Hazard Level

Medium

Vulnerability Type

其他

Affected Vendor

obgm

Published

2025-11-24

Last Modified

2026-02-24

References

https://github.com/obgm/libcoap/pull/1750 https://github.com/obgm/libcoap/issues/1744 https://access.redhat.com/security/cve/cve-2025-65495 https://vigilance.fr/vulnerability/libcoap-multiple-vulnerabilities-dated-05-12-2025-48996

Patch

https://github.com/obgm/libcoap