CVE-2020-35684
- EPSS 0.7%
- Published 19.08.2021 12:15:08
- Last modified 21.11.2024 05:27:50
An issue was discovered in HCC Nichestack 3.0. The code that parses TCP packets relies on an unchecked value of the IP payload size (extracted from the IP header) to compute the length of the TCP payload within the TCP checksum computation function. ...
CVE-2020-35685
- EPSS 0.41%
- Published 19.08.2021 12:15:08
- Last modified 21.11.2024 05:27:50
An issue was discovered in HCC Nichestack 3.0. The code that generates Initial Sequence Numbers (ISNs) for TCP connections derives the ISN from an insufficiently random source. As a result, an attacker may be able to determine the ISN of current and ...
CVE-2021-31401
- EPSS 0.71%
- Published 19.08.2021 12:15:08
- Last modified 21.11.2024 06:05:35
An issue was discovered in tcp_rcv() in nptcp.c in HCC embedded InterNiche 4.0.1. The TCP header processing code doesn't sanitize the value of the IP total length field (header length + data length). With a crafted IP packet, an integer overflow occu...