CNNVD-202601-2401 Information

CNNVD ID

CNNVD-202601-2401

Related CVE

CVE-2026-22211

• CNNVD Published: 2026-01-14

Description (Chinese)

TinyOS是TinyOS开源的一个操作系统。 TinyOS 2.1.2及之前版本存在缓冲区错误漏洞，该漏洞源于ZigBee/IEEE 802.15.4网络栈中printfUART格式化输出实现存在全局缓冲区溢出，可能导致拒绝服务、意外行为或信息泄露。

Description (English)

TinyOS is an operating system of TinyOS open source. TinyOS 2.1.2 and previous versions had an error loophole in the buffer zone, which had originated from the ZigBee/IEEE 802.15.4 printfUART-formatted output of the network, resulting in a global buffer zone spill that could lead to denial of services, accidental acts or information leaks.

Hazard Level

High

Vulnerability Type

缓冲区错误

Affected Vendor

TinyOS

Published

2026-01-14

Last Modified

2026-02-24

References

https://github.com/tinyos/tinyos-main https://www.vulncheck.com/advisories/tinyos-global-buffer-overflow-in-printfuart https://seclists.org/fulldisclosure/2026/Jan/14 https://access.redhat.com/security/cve/cve-2026-22211