CVE-2018-16598

low-risk
Published 2018-12-06

An issue was discovered in Amazon Web Services (AWS) FreeRTOS through 1.3.1, FreeRTOS up to V10.0.1 (with FreeRTOS+TCP), and WITTENSTEIN WHIS Connect middleware TCP/IP component. In xProcessReceivedUDPPacket and prvParseDNSReply, any received DNS response is accepted, without confirming it matches a sent DNS request.

Do I need to act?

-
0.39% chance of exploitation
EPSS score — low exploit probability
-
Not on CISA KEV list
No confirmed active exploitation reported to CISA
?
Patch status unknown
Check vendor advisories for fix availability and mitigation guidance
5
CVSS 5.9/10 Medium
NETWORK / HIGH complexity

Affected Products (2)

Amazon Web Services Freertos
Freertos

Affected Vendors

Amazon

References (6)

Patch https://blog.zimperium.com/freertos-tcpip-stack-vulnerabilities-details/
Third Party Advisory https://blog.zimperium.com/freertos-tcpip-stack-vulnerabilities-put-wide-range-d...
Release Notes https://github.com/aws/amazon-freertos/blob/v1.3.2/CHANGELOG.md
Patch https://blog.zimperium.com/freertos-tcpip-stack-vulnerabilities-details/
Third Party Advisory https://blog.zimperium.com/freertos-tcpip-stack-vulnerabilities-put-wide-range-d...
Release Notes https://github.com/aws/amazon-freertos/blob/v1.3.2/CHANGELOG.md
26
/ 100
low-risk
Severity 18/34 · Moderate
Exploitability 1/34 · Minimal
Exposure 7/34 · Low