12 matches found
EUVD-2020-6157
Malware in sbrugna...
EUVD-2020-6155
Malware in sbrugna...
RHEL 7 : iscsi-initiator-utils (Unpatched Vulnerability)
The remote Redhat Enterprise Linux 7 host has one or more packages installed that are affected by multiple vulnerabilities that have been acknowledged by the vendor but will not be patched. - iscsi-initiator-utils: Heap-based buffer overflow in processiscsidbroadcast CVE-2017-17840 - An issue was...
EulerOS 2.0 SP9 : open-iscsi (EulerOS-SA-2021-1012)
According to the versions of the open-iscsi package installed, the EulerOS installation on the remote host is affected by the following vulnerabilities : - An issue was discovered in uIP 1.0, as used in Contiki 3.0 and other products. When the Urgent flag is set in a TCP packet, and the stack is...
Denial Of Service (DoS)
open-iscsi is vulnerable to denial of service DoS. The vulnerability exists through an Out-of-Bounds read in the uIP TCP/IP Stack component when calculating the checksums for IP packets in upperlayerchksum in net/ipv4/uip.c...
Contiki infinite loop vulnerability (CNVD-2021-29450)
Contiki is an open source, highly portable, networked multitasking operating system for memory-constrained systems. An infinite loop vulnerability exists in the processing of IPv6 extended headers in exthdroptionsprocess in net/ipv6/uip6.c in the uIP TCP/IP stack component in Contiki 3.0 and...
CVE-2020-13987
An issue was discovered in Contiki through 3.0. An Out-of-Bounds Read vulnerability exists in the uIP TCP/IP Stack component when calculating the checksums for IP packets in upperlayerchksum in net/ipv4/uip.c...
CVE-2020-13987
CVE-2020-13987 affects Contiki up to version 3.0, with an Out-of-Bounds Read in the uIP TCP/IP Stack’s IP checksum calculation (upper_layer_chksum in net/ipv4/uip.c). According to the provided data, the impact is listed as HIGH (CVSSv3.1: 7.5) with network attack vector and no authentication, and...
CVE-2020-13985
An issue was discovered in Contiki through 3.0. A memory corruption vulnerability exists in the uIP TCP/IP stack component when handling RPL extension headers of IPv6 network packets in rplremoveheader in net/rpl/rpl-ext-header.c...
CVE-2020-13985
CVE-2020-13985 (AMNESIA:33) targets Contiki/Contiki-NG uIP stack: memory corruption via improper handling of IPv6 RPL extension headers in rpl_remove_header. Affected stack variants include Contiki 3.0 and prior, uIP-based implementations, and related TCP/IP stacks (e.g., picoTCP/N G, FNET, Nut/N...
CVE-2020-13987
An issue was discovered in Contiki through 3.0. An Out-of-Bounds Read vulnerability exists in the uIP TCP/IP Stack component when calculating the checksums for IP packets in upperlayerchksum in net/ipv4/uip.c...
CVE-2020-13988
An issue was discovered in Contiki through 3.0. An Integer Overflow exists in the uIP TCP/IP Stack component when parsing TCP MSS options of IPv4 network packets in uipprocess in net/ipv4/uip.c...