2 matches found
Integer Overflow
open-iscsi:sid is vulnerable to integer overflow. The vulnerability exist in the uIP TCP/IP Stack component when parsing TCP MSS options of IPv4 network packets in uipprocess in net/ipv4/uip.c...
CVE-2020-13987
CVE-2020-13987 affects Contiki up to version 3.0, with an Out-of-Bounds Read in the uIP TCP/IP Stack’s IP checksum calculation (upper_layer_chksum in net/ipv4/uip.c). According to the provided data, the impact is listed as HIGH (CVSSv3.1: 7.5) with network attack vector and no authentication, and...