Out of Bounds Memory Access Vulnerability in AWS FreeRTOS and WITTENSTEIN WHIS Connect

Out of Bounds Memory Access Vulnerability in AWS FreeRTOS and WITTENSTEIN WHIS Connect

CVE-2018-16602 · MEDIUM Severity

AV:N/AC:M/AU:N/C:P/I:N/A:N

An issue was discovered in Amazon Web Services (AWS) FreeRTOS through 1.3.1, FreeRTOS up to V10.0.1 (with FreeRTOS+TCP), and WITTENSTEIN WHIS Connect middleware TCP/IP component. Out of bounds memory access during parsing of DHCP responses in prvProcessDHCPReplies can be used for information disclosure.

Learn more about our Cis Benchmark Audit For Amazon Web Services.