4 matches found
CVE-2023-35847
CVE-2023-35847 affects VirtualSquare picoTCP (aka PicoTCP-NG) up to version 2.1, where the MSS lower bound is not enforced (could be zero). The provided documents consistently describe the vulnerability as stemming from the lack of an MSS lower bound, but do not specify an affected vendor/version...
CVE-2023-35846
VirtualSquare PicoTCP-NG (aka PicoTCP-NG) up to version 2.1 is affected by a vulnerability in which the transport-layer length is not checked within a frame before port filtering. The issue is described across multiple sources as affecting the PicoTCP-NG stack (VirtualSquare) and is associated wi...
CVE-2023-35849
The CVE-2023-35849 entry concerns VirtualSquare picoTCP (PicoTCP-NG) up to version 2.1. The vulnerability is caused by improper checking of header sizes, which can result in accessing data outside of a packet. The available sources indicate this affects PicoTCP-NG 2.1 and earlier, with CVSS v3.1 ...
CVE-2023-35848
CVE-2023-35848 affects VirtualSquare PicoTCP-NG (aka picoTCP) up to version 2.1. The root cause is missing size calculations before setting a value in an mss structure member, which can impact packet processing. Documented impact per CVSS indicates high impact to availability with no confidential...