Vulmon Recent Vulnerabilities Product List Research Posts Trends Blog About Contact
8.2
CVSSv3

CVE-2020-17437

Published: 11/12/2020 Updated: 08/08/2022
CVSS v2 Base Score: 6.4 | Impact Score: 4.9 | Exploitability Score: 10
CVSS v3 Base Score: 8.2 | Impact Score: 4.2 | Exploitability Score: 3.9
VMScore: 570
Vector: AV:N/AC:L/Au:N/C:P/I:N/A:P

Vulnerability Summary

An issue exists in uIP 1.0, as used in Contiki 3.0 and other products. When the Urgent flag is set in a TCP packet, and the stack is configured to ignore the urgent data, the stack attempts to use the value of the Urgent pointer bytes to separate the Urgent data from the normal data, by calculating the offset at which the normal data should be present in the global buffer. However, the length of this offset is not checked; therefore, for large values of the Urgent pointer bytes, the data pointer can point to memory that is way beyond the data buffer in uip_process in uip.c.

Vulnerability Trend

Vulnerable Product Search on Vulmon Subscribe to Product

uip project uip

open-iscsi project open-iscsi

siemens sentron 3va com100 firmware

siemens sentron 3va com800 firmware

siemens sentron 3va dsp800 firmware

siemens sentron pac2200 clp firmware -

siemens sentron pac2200 firmware

siemens sentron pac3200 firmware

siemens sentron pac3200t firmware

siemens sentron pac3220 firmware

siemens sentron pac4200 firmware

ICS Advisories

Siemens TCP/IP Stack Vulnerabilities–AMNESIA:33 in SENTRON PAC / 3VA Devices (Update C)
Critical Infrastructure Sectors: Energy

Mailing Lists

Full Disclosure: CVE-2020-17528: Apache NuttX (incubating) Out of Bound Write from invalid TCP Urgent length
Description: Out-of-bounds Write vulnerability in TCP stack of Apache Software Foundation Apache NuttX (incubating) allows attacker to corrupt memory by supplying arbitrary urgent data pointer offsets within TCP packets including beyond the length of the packet This issue affects: Apache Software Foundation Apache NuttX (incubating) versions prio ...

References

CWE-787https://us-cert.cisa.gov/ics/advisories/icsa-20-343-01https://www.kb.cert.org/vuls/id/815128https://cert-portal.siemens.com/productcert/pdf/ssa-541018.pdfhttps://nvd.nist.govhttps://www.cisa.gov/uscert/ics/advisories/icsa-21-068-06
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-37316firmwareCVE-2024-30078CVE-2024-5995remote code executionlogic flawCVE-2024-20693CVE-2024-37315CVE-2024-5464
Vulmon Logo Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started

Vulmon Search

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

About

Home Recent Vulnerabilities Product List Vendor List Research Posts Trends Blog About Contact

Products

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Connect

Twitter Reddit Linkedin Facebook