Lucene search
HistoryAug 31, 2022 - 8:15 p.m.
CVE-2022-1841
tcp.c
tcp_flags function
out-of-bounds write
CVSS3
5.3
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
NONE
Integrity Impact
LOW
Availability Impact
NONE
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N
EPSS
0.001
Percentile
31.3%
In subsys/net/ip/tcp.c , function tcp_flags , when the incoming parameter flags is ECN or CWR , the buf will out-of-bounds write a byte zero.
Affected configurations
Node
zephyrprojectzephyrRange≤3.0.0
| Vendor | Product | Version | CPE |
|---|---|---|---|
| zephyrproject | zephyr | * | cpe:2.3:o:zephyrproject:zephyr:*:*:*:*:*:*:*:* |
Related
cnvd
cnvd
Zepher Project zephyr has a binary vulnerability
2022-09-07 00:00:00
prion
prion
Out-of-bounds
2022-08-31 20:15:00
cve
cve
CVE-2022-1841
2022-08-31 20:15:08
cvelist
cvelist
CVE-2022-1841 Out-of-bound write in tcp_flags
2022-08-31 19:40:08
CVSS3
5.3
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
NONE
Integrity Impact
LOW
Availability Impact
NONE
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N
EPSS
0.001
Percentile
31.3%
Related for NVD:CVE-2022-1841