Vulnerability Database

314,496

Total vulnerabilities in the database

CVE-2025-65501

Null pointer dereference in coap_dtls_info_callback() in OISM libcoap 4.3.5 allows remote attackers to cause a denial of service via a DTLS handshake where SSL_get_app_data() returns NULL.

  • Published: Nov 24, 2025
  • Updated: Nov 25, 2025
  • CVE: CVE-2025-65501
  • Severity: Low
  • Exploit:

CVSS v3:

  • Severity: Low
  • Score: 4.3
  • AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:L

CWEs:

Software From Fixed in
libcoap / libcoap 4.3.5 4.3.5.x