CVE-2026-9267
CVSS Score
0.0
EPSS Score
0.0%
EPSS Percentile
0th
Eclipse tinydtls before commit b3efd41ad111a4920f599f51ffa4f5e9f1e72221 contains an out-of-bounds read vulnerability in the check_server_certificate() function that allows unauthenticated attackers to trigger reads beyond valid buffer boundaries by crafting a Certificate handshake message with a specific fragment_length value. Attackers can exploit missing buffer length validation before uint24 reads, memcmp, and memcpy operations during DTLS epoch 0 on both client and server paths to cause denial of service on memory-constrained devices.
| CWE | CWE-125 |
| Vendor | eclipse foundation |
| Product | eclipse tinydtls |
| Published | Jun 29, 2026 |
Stay Ahead of the Next One
Get instant alerts for eclipse foundation eclipse tinydtls
Be the first to know when new unknown vulnerabilities affecting eclipse foundation eclipse tinydtls are published — delivered to Slack, Telegram or Discord.
Get Free Alerts →
Free · No credit card · 60 sec setup
Affected Versions
Eclipse Foundation / Eclipse tinydtls
0 < b3efd41ad111a4920f599f51ffa4f5e9f1e72221
References
Credits
Kazuma Matsumoto, a security researcher at GMO Cybersecurity by IERAE, Inc.