Skip to content

Latest commit

 

History

History
executable file
·
40 lines (27 loc) · 1.22 KB

nichestack-tcp-urg-dos-xray-194050.md

File metadata and controls

executable file
·
40 lines (27 loc) · 1.22 KB
description title date_published last_updated xray_id vul_id cvss severity discovered_by type
CVE-2021-31400 High severity. NicheStack TCP out-of-band urgent data processing DoS
NicheStack TCP URG DoS
2021-08-04
2021-08-04
XRAY-194050
CVE-2021-31400
7.5
high
Denys Vozniuk
vulnerability

Summary

NicheStack TCP out-of-band urgent data processing DoS

Component

InterNiche TCP/IP stack

Affected versions

InterNiche (, 4.3), fixed in 4.3

Description

NicheStack TCP out-of-band urgent data processing function invokes a panic function if the pointer to the end of the out-of-band urgent data points out of the TCP segment’s data, which results in DoS (either an infinite loop or interrupt thrown, depending on NicheStack version)

PoC

No PoC is supplied for this issue

Vulnerability mitigations

No vulnerability mitigations are supplied for this issue

References

(JFrog) INFRA:HALT New Vulnerabilities Impacting OT and Critical Infrastructure

NVD