Filters

Multiple (open source) picoTCP-NG, Version 1.7.0 and prior33 vulnerabilities

ICSA-20-343-01

An issue was discovered in uIP through 1.0, as used in Contiki and Contiki-NG. Domain name parsing l…

high
7.5
First published (updated )
CVE-2020-24335

An issue was discovered in the IPv6 stack in Contiki through 3.0. There are inconsistent checks for …

critical
9.8
First published (updated )
CVE-2020-25112

An issue was discovered in the IPv6 stack in Contiki through 3.0. There is an insufficient check for…

critical
9.8
First published (updated )
CVE-2020-25111

An issue was discovered in the DNS implementation in Ethernut in Nut/OS 5.1. The length byte of a do…

critical
9.8
First published (updated )
CVE-2020-25110

An issue was discovered in the DNS implementation in Ethernut in Nut/OS 5.1. The number of DNS queri…

critical
9.8
First published (updated )
CVE-2020-25109

An issue was discovered in the DNS implementation in Ethernut in Nut/OS 5.1. The DNS response data l…

critical
9.8
First published (updated )
CVE-2020-25108

An issue was discovered in the DNS implementation in Ethernut in Nut/OS 5.1. There is no check on wh…

critical
9.8
First published (updated )
CVE-2020-25107

An issue was discovered in FNET through 4.6.4. The code for processing resource records in mDNS quer…

critical
9.1
First published (updated )
CVE-2020-24383

An issue was discovered in picoTCP and picoTCP-NG through 1.7.0. The TCP input data processing funct…

critical
9.1
First published (updated )
CVE-2020-24341

An issue was discovered in picoTCP and picoTCP-NG through 1.7.0. The code that processes DNS respons…

high
8.2
First published (updated )
CVE-2020-24340

An issue was discovered in picoTCP and picoTCP-NG through 1.7.0. The DNS domain name record decompre…

high
7.5
First published (updated )
CVE-2020-24339

An issue was discovered in picoTCP through 1.7.0. The DNS domain name record decompression functiona…

critical
9.8
First published (updated )
CVE-2020-24338

An issue was discovered in picoTCP and picoTCP-NG through 1.7.0. When an unsupported TCP option with…

high
7.5
First published (updated )
CVE-2020-24337

Buffer Overflow

critical
9.8
First published (updated )
CVE-2020-24336

The code that processes DNS responses in uIP through 1.0, as used in Contiki and Contiki-NG, does no…

high
8.2
First published (updated )
CVE-2020-24334

Input Validation

medium
5.3
First published (updated )
CVE-2020-17470

An issue was discovered in FNET through 4.6.4. The code for IPv6 fragment reassembly tries to access…

high
7.5
First published (updated )
CVE-2020-17469

An issue was discovered in FNET through 4.6.4. The code for processing the hop-by-hop header (in the…

high
7.5
First published (updated )
CVE-2020-17468

An issue was discovered in FNET through 4.6.4. The code for processing the hostname from an LLMNR re…

critical
9.1
First published (updated )
CVE-2020-17467

An issue was discovered in picoTCP 1.7.0. The code for processing the IPv6 destination options does …

high
7.5
First published (updated )
CVE-2020-17445

Integer Overflow, Input Validation

high
7.5
First published (updated )
CVE-2020-17444

Integer Overflow

high
8.2
First published (updated )
CVE-2020-17443

Integer Overflow

high
7.5
First published (updated )
CVE-2020-17442

Input Validation

critical
9.1
First published (updated )
CVE-2020-17441

An issue was discovered in uIP 1.0, as used in Contiki 3.0 and other products. The code that parses …

high
7.5
First published (updated )
CVE-2020-17440

Input Validation

high
8.3
First published (updated )
CVE-2020-17439

An issue was discovered in uIP 1.0, as used in Contiki 3.0 and other products. The code that reassem…

critical
9.8
First published (updated )
CVE-2020-17438

An issue was discovered in Contiki through 3.0. An infinite loop exists in the uIP TCP/IP stack comp…

high
7.5
First published (updated )
CVE-2020-13986

Integer Overflow

high
7.5
First published (updated )
CVE-2020-13985

An issue was discovered in Contiki through 3.0. An infinite loop exists in the uIP TCP/IP stack comp…

high
7.5
First published (updated )
CVE-2020-13984

An issue was discovered in uIP 1.0, as used in Contiki 3.0 and other products. When the Urgent flag …

high
8.2
First published (updated )
CVE-2020-17437

Integer Overflow

high
7.5
First published (updated )
CVE-2020-13988

An issue was discovered in Contiki through 3.0. An Out-of-Bounds Read vulnerability exists in the uI…

high
8.2
First published (updated )
CVE-2020-13987

Company

Resources

Contact

SecAlerts Pty Ltd.
132 Wickham Terrace
Fortitude Valley,
QLD 4006, Australia
info@secalerts.co
By using SecAlerts services, you agree to our services end-user license agreement. This website is safeguarded by reCAPTCHA and governed by the Google Privacy Policy and Terms of Service. All names, logos, and brands of products are owned by their respective owners, and any usage of these names, logos, and brands for identification purposes only does not imply endorsement. If you possess any content that requires removal, please get in touch with us.
© 2024 SecAlerts Pty Ltd.
ABN: 70 645 966 203, ACN: 645 966 203