← volver
CVE-2020-25767

CVE-2020-25767

EPSS 1.5%
An issue was discovered in HCC Embedded NicheStack IPv4 4.1. The dnc_copy_in routine for parsing DNS domain names does not check whether a domain name compression pointer is pointing within the bounds of the packet (e.g., forward compression pointer jumps are allowed), which leads to an Out-of-bounds Read, and a Denial-of-Service as a consequence.
Productos afectados
n/a · n/a

¿Quieres saber si tu infraestructura está expuesta a esto?

Hablar con TrueHacking →
Referencias
https://www.forescout.com/blog/new-critical-operational-technology-vulnerabilities-found-on-nichestack/https://www.kb.cert.org/vuls/id/608209