Login Sign Up

CVE-2023-24817

7.5 HIGH

📋 TL;DR

CVE-2023-24817 is an integer underflow vulnerability in RIOT-OS's 6LoWPAN network stack that allows attackers to send crafted frames causing out-of-bounds memory access. This can corrupt packet buffers or allocator metadata, potentially leading to denial of service. IoT devices running vulnerable versions of RIOT-OS are affected.

💻 Affected Systems

Products:
  • RIOT-OS
Versions: All versions prior to 2023.04
Operating Systems: RIOT-OS
Default Config Vulnerable: ⚠️ Yes
Notes: Only affects systems using 6LoWPAN network stack with SRH (Source Routing Header) enabled.

📦 What is this software?

Riot by Riot Os

View all CVEs affecting Riot →

⚠️ Risk & Real-World Impact

🔴

Worst Case

Complete device crash or persistent denial of service through memory corruption, potentially allowing remote code execution if combined with other vulnerabilities.

🟠

Likely Case

Denial of service through device crashes or instability, disrupting IoT device functionality.

🟢

If Mitigated

Minimal impact if SRH is disabled or devices are patched, with only legitimate 6LoWPAN traffic processed.

🌐 Internet-Facing: HIGH - IoT devices are often internet-facing and vulnerable to remote exploitation via crafted network packets.
🏢 Internal Only: MEDIUM - Internal network attacks still possible if attacker gains network access, but requires specific 6LoWPAN targeting.

🎯 Exploit Status

Public PoC: ✅ No
Weaponized: UNKNOWN
Unauthenticated Exploit: ⚠️ Yes
Complexity: MEDIUM

Exploitation requires crafting specific 6LoWPAN frames and timing to trigger memory corruption.

🛠️ Fix & Mitigation

✅ Official Fix

Patch Version: 2023.04

Vendor Advisory: https://github.com/RIOT-OS/RIOT/security/advisories/GHSA-xjgw-7638-29g5

Restart Required: Yes

Instructions:

1. Update RIOT-OS to version 2023.04 or later. 2. Recompile and redeploy firmware to affected IoT devices. 3. Restart devices to apply the patch.

🔧 Temporary Workarounds

Disable SRH in network stack

all

Disables Source Routing Header processing in the 6LoWPAN stack to prevent exploitation.

Configure RIOT-OS network stack with SRH disabled (specific configuration depends on device implementation)

🧯 If You Can't Patch

  • Segment IoT devices on isolated network segments to limit attack surface.
  • Implement network filtering to block suspicious 6LoWPAN traffic at perimeter devices.

🔍 How to Verify

Check if Vulnerable:

Check RIOT-OS version on device: if version is earlier than 2023.04 and uses 6LoWPAN with SRH enabled, device is vulnerable.

Check Version:

Check RIOT-OS build configuration or firmware version string (device-specific)

Verify Fix Applied:

Verify RIOT-OS version is 2023.04 or later and test 6LoWPAN functionality remains operational.

📡 Detection & Monitoring

Log Indicators:

  • Unexpected device crashes or reboots
  • Memory allocation errors in system logs
  • Network stack error messages

Network Indicators:

  • Unusual 6LoWPAN traffic patterns
  • Malformed 6LoWPAN frames with crafted SRH headers

SIEM Query:

Search for: 'RIOT-OS crash' OR 'memory corruption' OR '6LoWPAN error' in device logs

📊 Metadata

CVE ID: CVE-2023-24817
CVSS v3 Score: 7.5 (HIGH)
CVSS Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
CWE: CWE-119
Published: May 30, 2023
Last Updated: November 21, 2024

🔗 References

📤 Share & Export

📄 Export Markdown 📋 Export JSON

🔗 Related Vulnerabilities

If you're affected by CVE-2023-24817, you might also want to check these:

CVE-2024-23613 10.0

A critical buffer overflow vulnerability in Symantec Deployment Solution 7.9 allows remote, unauthen...

Same vulnerability type (CWE-119)
CVE-2024-23615 10.0

A critical buffer overflow vulnerability in Symantec Messaging Gateway allows remote unauthenticated...

Same vulnerability type (CWE-119)
CVE-2026-2776 10.0

This CVE describes a sandbox escape vulnerability in Firefox's Telemetry component due to incorrect ...

Same vulnerability type (CWE-119)