Primary

Context

Intel TinyCBOR Library Denial-of-Service Vulnerability

Vulnerability

A denial-of-service vulnerability has been identified in certain TinyCBOR libraries maintained by Intel, prior to version 0.6.1. This vulnerability arises from uncontrolled recursion, which may allow an authenticated user to disrupt service via local access.

Impact

Exploitation of this vulnerability can lead to a denial-of-service condition, causing the application to become unresponsive or unavailable.

Remediation

Users are advised to update the Intel-maintained TinyCBOR library to version 0.6.1 or later. The latest version can be downloaded from the Intel TinyCBOR GitHub releases page.

Added: Aug 12, 2025, 8:19 PM

Updated: Aug 12, 2025, 8:19 PM

Vulnerability Rating

Custom Algorithm

spread

0.0

impact

2.5

exploitability

3.3

remediation

7.7

relevance

0.4

threat

0.0

urgency

2.9

incentive

1.7

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Vulnerability Rating

Custom Algorithm

spread

0.0

impact

2.5

exploitability

3.3

remediation

7.7

relevance

0.4

threat

0.0

urgency

2.9

incentive

1.7

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Intel TinyCBOR Library Denial-of-Service Vulnerability

Vulnerability

Impact

Remediation

Affected Products

CVSS Scores

References

Vulnerability Rating

Vulnerability Rating