CVE-2020-13988

An issue was discovered in Contiki through 3.0. An Integer Overflow exists in the uIP TCP/IP Stack component when parsing TCP MSS options of IPv4 network packets in uip_process in net/ipv4/uip.c.
References
Link Resource
https://us-cert.cisa.gov/ics/advisories/icsa-20-343-01 Third Party Advisory US Government Resource
https://www.kb.cert.org/vuls/id/815128 Third Party Advisory US Government Resource
Configurations

Configuration 1 (hide)

cpe:2.3:o:contiki-ng:contiki-ng:*:*:*:*:*:*:*:*

History

No history.

Information

Published : 2020-12-11 22:15

Updated : 2024-02-04 21:23


NVD link : CVE-2020-13988

Mitre link : CVE-2020-13988

CVE.ORG link : CVE-2020-13988


JSON object : View

Products Affected

contiki-ng

  • contiki-ng
CWE
CWE-190

Integer Overflow or Wraparound