Out of Bounds Access Vulnerability in AWS FreeRTOS and WITTENSTEIN WHIS Connect
CVE-2018-16603 · MEDIUM Severity
AV:N/AC:M/AU:N/C:P/I:N/A:N
An issue was discovered in Amazon Web Services (AWS) FreeRTOS through 1.3.1, FreeRTOS up to V10.0.1 (with FreeRTOS+TCP), and WITTENSTEIN WHIS Connect middleware TCP/IP component. Out of bounds access to TCP source and destination port fields in xProcessReceivedTCPPacket can leak data back to an attacker.
Learn more about our Cis Benchmark Audit For Amazon Web Services.