CNNVD-202512-895 Information
Dec 08, 2025
cve
CNNVD ID
CNNVD-202512-895
Related CVE
- CNNVD Published: 2025-12-08
Description (Chinese)
libcoap是obgm开源的一个轻量级应用程序协议的 C 实现。 libcoap release-4.3.5-patches之前版本存在安全漏洞,该漏洞源于OSCORE配置解析器存在内存泄露,可能导致越界读取和信息泄露。
Description (English)
libcoap is the C of a lightweight application protocol from the obgm open source. The previous version of libcoap release-4.3.5-pacches had a security loophole, which stemmed from the OSCORE configuration resolver’s memory leak, which could lead to cross-border reading and information leaks.
Hazard Level
High
Vulnerability Type
其他
Affected Vendor
obgm
Published
2025-12-08
Last Modified
2026-02-24
References
https://github.com/obgm/libcoap/pull/1730 https://github.com/obgm/libcoap/releases/tag/v4.3.5a
Patch
https://libcoap.net/install.html
Share on: