Primary

Context

Golioth Firmware SDK Blockwise Transfer Path Out-of-Bounds Read Vulnerability

Vulnerability

A vulnerability exists in Golioth Firmware SDK versions 0.19.1 prior to 0.22.0, allowing for an out-of-bounds read. This issue arises from improper null termination of a blockwise transfer path. The function blockwise_transfer_init() accepts a path of length CONFIG_GOLIOTH_COAP_MAX_PATH_LEN and uses strncpy() to copy it, without ensuring a trailing null byte. This leaves the context path unterminated. Subsequently, a strlen() operation on this buffer in golioth_coap_client_get_internal() can read past the allocated memory, leading to a crash and denial-of-service condition. The vulnerability is triggered by application-controlled input, not network input by default.

Impact

Exploitation of this vulnerability causes a crash, leading to a denial-of-service condition.

Remediation

Users can upgrade to Golioth Firmware SDK version 0.22.0 or later to address this vulnerability.

Added: Feb 26, 2026, 6:55 PM

Updated: Feb 26, 2026, 7:47 PM

Vulnerability Rating

Custom Algorithm

spread

0.0

impact

2.5

exploitability

4.0

remediation

0.0

relevance

3.2

threat

3.2

urgency

2.9

incentive

0.0

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Vulnerability Rating

Custom Algorithm

spread

0.0

impact

2.5

exploitability

4.0

remediation

0.0

relevance

3.2

threat

3.2

urgency

2.9

incentive

0.0

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Golioth Firmware SDK Blockwise Transfer Path Out-of-Bounds Read Vulnerability

Vulnerability

Impact

Remediation

Affected Products

CVSS Scores

References

Vulnerability Rating

Vulnerability Rating