Home > Vulnerability Database > CVE-2026-22213

Mend.io Vulnerability Database

CVE-2026-22213

Good to know:

Date: January 12, 2026

RIOT OS versions up to and including 2026.01-devel-317 contain a stack-based buffer overflow vulnerability in the tapslip6 utility. The vulnerability is caused by unsafe string concatenation in the devopen() function, which constructs a device path using unbounded user-controlled input. The utility uses strcpy() and strcat() to concatenate the fixed prefix '/dev/' with a user-supplied device name provided via the -s command-line option without bounds checking. This allows an attacker to supply an excessively long device name and overflow a fixed-size stack buffer, leading to process crashes and memory corruption.

Severity Score

2.8

Related Resources (6)

Url: https://www.riot-os.org/

Url: https://github.com/RIOT-OS/RIOT

Url: https://www.vulncheck.com/advisories/riot-os-stack-based-buffer-overflow-in-tapslip6-utility

Url: https://seclists.org/fulldisclosure/2026/Jan/15

Url: https://nvd.nist.gov/vuln/detail/CVE-2026-22213

Url: https://www.mend.io/vulnerability-database/CVE-2026-22213

Severity Score

2.8

Weakness Type (CWE)

Stack-based Buffer Overflow

CWE-121

CVSS v3.1

Base Score:	2.8
Attack Vector (AV):	LOCAL
Attack Complexity (AC):	LOW
Privileges Required (PR):	LOW
User Interaction (UI):	REQUIRED
Scope (S):	UNCHANGED
Confidentiality (C):	NONE
Integrity (I):	NONE
Availability (A):	LOW

Mend.io Vulnerability Database

We found results for “”

CVE-2026-22213

Good to know:

Date: January 12, 2026

Severity Score

Related Resources (6)

Severity Score

Weakness Type (CWE)

CVSS v3.1

Do you need more information?