Critical severity9.8NVD Advisory· Published Dec 11, 2020· Updated Jun 17, 2026
CVE-2020-24336
CVE-2020-24336
Description
An issue was discovered in Contiki through 3.0 and Contiki-NG through 4.5. The code for parsing Type A domain name answers in ip64-dns64.c doesn't verify whether the address in the answer's length is sane. Therefore, when copying an address of an arbitrary length, a buffer overflow can occur. This bug can be exploited whenever NAT64 is enabled.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
1- Range: <=3.0
Patches
Vulnerability mechanics
References
2- us-cert.cisa.gov/ics/advisories/icsa-20-343-01nvdThird Party AdvisoryUS Government Resource
- www.kb.cert.org/vuls/id/815128nvdThird Party AdvisoryUS Government Resource
News mentions
0No linked articles in our index yet.