CVE-2016-8596

NONE EPSS 80.8%
Published Oct 28, 20169y ago · Modified Jun 17, 20262w ago
Find Similar
Published Oct 28, 2016 9y ago
Last Modified Jun 17, 2026 2w ago

Description

Buffer overflow in the csp_can_process_frame in csp_if_can.c in the libcsp library v1.4 and earlier allows hostile components connected to the canbus to execute arbitrary code via a long csp packet.

Threat Intelligence

EPSS Exploit Probability
80.8% percentile
Exploit & Patch Status
No Known Exploit
Patch Available

Weaknesses 1

CWE-119 Improper Restriction of Operations within the Bounds of a Memory Buffer Memory Safety

Affected Products 1

VendorProductVersionRange
libcsplibcsp* ≤1.4

References 2

Remediation

  • github.com https://github.com/GomSpace/libcsp/pull/80
    PatchVendor Advisory