An issue was discovered in Contiki through 3.0. An Out-of-Bounds Read vulnerability exists in the uIP TCP/IP Stack component when calculating the checksums for IP packets in upper_layer_chksum in net/ipv4/uip.c.
2020-12-11T22:15:12.543
2024-11-21T05:02:17.680
Modified
CVSSv3.1: 7.5 (HIGH)
AV:N/AC:L/Au:N/C:N/I:N/A:P
10.0
2.9
| Type | Vendor | Product | Version/Range | Vulnerable? |
|---|---|---|---|---|
| Application | uip_project | uip | ≤ 1.0 | Yes |
| Operating System | contiki-os | contiki | ≤ 3.0 | No |
| Application | open-iscsi_project | open-iscsi | ≤ 2.1.12 | Yes |
| Operating System | siemens | sentron_3va_com100_firmware | < 4.4.1 | Yes |
| Hardware | siemens | sentron_3va_com100 | - | No |
| Operating System | siemens | sentron_3va_com800_firmware | < 4.4.1 | Yes |
| Hardware | siemens | sentron_3va_com800 | - | No |
| Operating System | siemens | sentron_pac3200_firmware | < 2.4.7 | Yes |
| Hardware | siemens | sentron_pac3200 | - | No |
| Operating System | siemens | sentron_pac4200_firmware | < 2.3.0 | Yes |
| Hardware | siemens | sentron_pac4200 | - | No |