Out of Bounds Access Vulnerability in AWS FreeRTOS and WITTENSTEIN WHIS Connect

Out of Bounds Access Vulnerability in AWS FreeRTOS and WITTENSTEIN WHIS Connect

CVE-2018-16603 · MEDIUM Severity

AV:N/AC:M/AU:N/C:P/I:N/A:N

An issue was discovered in Amazon Web Services (AWS) FreeRTOS through 1.3.1, FreeRTOS up to V10.0.1 (with FreeRTOS+TCP), and WITTENSTEIN WHIS Connect middleware TCP/IP component. Out of bounds access to TCP source and destination port fields in xProcessReceivedTCPPacket can leak data back to an attacker.

Learn more about our Cis Benchmark Audit For Amazon Web Services.