Lucene search
+L

95 matches found

NVD
NVD
added 2021/08/19 12:15 p.m.34 views

CVE-2020-35684

An issue was discovered in HCC Nichestack 3.0. The code that parses TCP packets relies on an unchecked value of the IP payload size extracted from the IP header to compute the length of the TCP payload within the TCP checksum computation function. When the IP payload size is set to be smaller tha...

7.5CVSS0.02287EPSS
Exploits0References4
NVD
NVD
added 2021/08/19 12:15 p.m.30 views

CVE-2020-35685

An issue was discovered in HCC Nichestack 3.0. The code that generates Initial Sequence Numbers ISNs for TCP connections derives the ISN from an insufficiently random source. As a result, an attacker may be able to determine the ISN of current and future TCP connections and either hijack existing...

9.1CVSS0.02051EPSS
Exploits0References4
OSV
OSV
added 2021/08/19 12:15 p.m.6 views

CVE-2020-35683

An issue was discovered in HCC Nichestack 3.0. The code that parses ICMP packets relies on an unchecked value of the IP payload size extracted from the IP header to compute the ICMP checksum. When the IP payload size is set to be smaller than the size of the IP header, the ICMP checksum computati...

7.5CVSS7.4AI score0.02287EPSS
Exploits0References4
NVD
NVD
added 2021/08/19 12:15 p.m.27 views

CVE-2020-35683

An issue was discovered in HCC Nichestack 3.0. The code that parses ICMP packets relies on an unchecked value of the IP payload size extracted from the IP header to compute the ICMP checksum. When the IP payload size is set to be smaller than the size of the IP header, the ICMP checksum computati...

7.5CVSS0.02287EPSS
Exploits0References4
Prion
Prion
added 2021/08/19 12:15 p.m.34 views

Code injection

An issue was discovered in HCC Nichestack 3.0. The code that generates Initial Sequence Numbers ISNs for TCP connections derives the ISN from an insufficiently random source. As a result, an attacker may be able to determine the ISN of current and future TCP connections and either hijack existing...

6.4CVSS9.3AI score0.02051EPSS
Exploits0References4Affected Software3
Prion
Prion
added 2021/08/19 12:15 p.m.24 views

Out-of-bounds

An issue was discovered in HCC Embedded InterNiche NicheStack through 4.3. The tfshnd:tftpsrv.c TFTP packet processing function doesn't ensure that a filename is adequately '\0' terminated; therefore, a subsequent call to strlen for the filename might read out of bounds of the protocol packet...

7.8CVSS8.6AI score0.023EPSS
Exploits0References3Affected Software1
Prion
Prion
added 2021/08/19 12:15 p.m.24 views

Design/Logic Flaw

An issue was discovered in HCC Nichestack 3.0. The code that parses ICMP packets relies on an unchecked value of the IP payload size extracted from the IP header to compute the ICMP checksum. When the IP payload size is set to be smaller than the size of the IP header, the ICMP checksum computati...

5CVSS8.5AI score0.02287EPSS
Exploits0References4Affected Software2
Prion
Prion
added 2021/08/19 12:15 p.m.25 views

Design/Logic Flaw

An issue was discovered in HCC Nichestack 3.0. The code that parses TCP packets relies on an unchecked value of the IP payload size extracted from the IP header to compute the length of the TCP payload within the TCP checksum computation function. When the IP payload size is set to be smaller tha...

5CVSS8.5AI score0.02287EPSS
Exploits0References4Affected Software3
CVE
CVE
added 2021/08/19 11:25 a.m.68 views

CVE-2021-31401

CVE-2021-31401 affects HCC Embedded’s InterNiche/NicheStack TCP/IP stack (InterNiche 4.0.1). The issue is an improper input validation in TCP/IP processing: the TCP/IP stack does not validate the IP total length, allowing a crafted IP packet to trigger an integer overflow in tcp_rcv() (nptcp.c). ...

7.5CVSS8.7AI score0.02252EPSS
Exploits0References3Affected Software1
Cvelist
Cvelist
added 2021/08/19 11:21 a.m.37 views

CVE-2020-35685

An issue was discovered in HCC Nichestack 3.0. The code that generates Initial Sequence Numbers ISNs for TCP connections derives the ISN from an insufficiently random source. As a result, an attacker may be able to determine the ISN of current and future TCP connections and either hijack existing...

9.2AI score0.02051EPSS
Exploits0References4
CVE
CVE
added 2021/08/19 11:21 a.m.87 views

CVE-2020-35685

CVE-2020-35685 affects HCC Nichestack/NicheStack up to versions preceding 4.3, where ISNs are generated from an insufficiently random source. This enables an attacker to potentially hijack existing TCP connections or spoof future ones, as ISN predictability undermines TCP security. The ICS/CISA a...

9.1CVSS9.1AI score0.02051EPSS
Exploits0References4Affected Software1
Cvelist
Cvelist
added 2021/08/19 11:19 a.m.33 views

CVE-2020-35684

An issue was discovered in HCC Nichestack 3.0. The code that parses TCP packets relies on an unchecked value of the IP payload size extracted from the IP header to compute the length of the TCP payload within the TCP checksum computation function. When the IP payload size is set to be smaller tha...

8AI score0.02287EPSS
Exploits0References4
CVE
CVE
added 2021/08/19 11:19 a.m.74 views

CVE-2020-35684

CVE-2020-35684 affects HCC Nichestack (InterNiche/NicheStack) TCP/IP stack. The issue is in the TCP checksum path where the code uses an unchecked IP payload size to compute the TCP payload length, which can cause an out-of-bounds read when the IP payload size is smaller than the IP header. This ...

7.5CVSS7.9AI score0.02287EPSS
Exploits0References4Affected Software1
NVD
NVD
added 2021/08/19 11:15 a.m.21 views

CVE-2021-31226

An issue was discovered in HCC embedded InterNiche 4.0.1. A potential heap buffer overflow exists in the code that parses the HTTP POST request, due to lack of size validation. This vulnerability requires the attacker to send a crafted HTTP POST request with a URI longer than 50 bytes. This leads...

9.8CVSS0.03155EPSS
Exploits0References2
NVD
NVD
added 2021/08/19 11:15 a.m.15 views

CVE-2021-31228

An issue was discovered in HCC embedded InterNiche 4.0.1. This vulnerability allows the attacker to predict a DNS query's source port in order to send forged DNS response packets that will be accepted as valid answers to the DNS client's requests without sniffing the specific request. Data is...

7.5CVSS0.0127EPSS
Exploits0References2
NVD
NVD
added 2021/08/19 11:15 a.m.19 views

CVE-2021-31400

An issue was discovered in tcppulloutofband in tcpin.c in HCC embedded InterNiche 4.0.1. The TCP out-of-band urgent-data processing function invokes a panic function if the pointer to the end of the out-of-band data points outside of the TCP segment's data. If the panic function hadn't a trap...

7.5CVSS0.01493EPSS
Exploits0References2
OSV
OSV
added 2021/08/19 11:15 a.m.6 views

CVE-2021-31228

An issue was discovered in HCC embedded InterNiche 4.0.1. This vulnerability allows the attacker to predict a DNS query's source port in order to send forged DNS response packets that will be accepted as valid answers to the DNS client's requests without sniffing the specific request. Data is...

7.5CVSS5.8AI score0.0127EPSS
Exploits0References2
NVD
NVD
added 2021/08/19 11:15 a.m.34 views

CVE-2021-31227

An issue was discovered in HCC embedded InterNiche 4.0.1. A potential heap buffer overflow exists in the code that parses the HTTP POST request, due to an incorrect signed integer comparison. This vulnerability requires the attacker to send a malformed HTTP packet with a negative Content-Length,...

7.5CVSS0.01675EPSS
Exploits0References2
Prion
Prion
added 2021/08/19 11:15 a.m.29 views

Heap overflow

An issue was discovered in HCC embedded InterNiche 4.0.1. A potential heap buffer overflow exists in the code that parses the HTTP POST request, due to lack of size validation. This vulnerability requires the attacker to send a crafted HTTP POST request with a URI longer than 50 bytes. This leads...

7.5CVSS9.5AI score0.03155EPSS
Exploits0References2Affected Software1
Prion
Prion
added 2021/08/19 11:15 a.m.20 views

Information disclosure

An issue was discovered in HCC embedded InterNiche 4.0.1. This vulnerability allows the attacker to predict a DNS query's source port in order to send forged DNS response packets that will be accepted as valid answers to the DNS client's requests without sniffing the specific request. Data is...

5CVSS8.5AI score0.0127EPSS
Exploits0References2Affected Software1
Rows per page
Query Builder