Critical severity9.8NVD Advisory· Published Oct 22, 2024· Updated Jun 17, 2026
CVE-2024-40493
CVE-2024-40493
Description
Null Pointer Dereference in coap_client_exchange_blockwise2 function in Keith Cullen FreeCoAP 1.0 allows remote attackers to cause a denial of service and potentially execute arbitrary code via a specially crafted CoAP packet that causes coap_msg_get_payload(resp) to return a null pointer, which is then dereferenced in a call to memcpy.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
2Patches
Vulnerability mechanics
References
2- github.com/keith-cullen/FreeCoAP/issues/37nvdExploitIssue Tracking
- gist.github.com/dqp10515/fe80005e2fb58ed8ada178ac017e4ad4nvdThird Party Advisory
News mentions
0No linked articles in our index yet.