CVE Vulnerability

CVE-2021-31401

An issue was discovered in tcp_rcv() in nptcp.c in HCC embedded InterNiche 4.0.1. The TCP header processing code doesn't sanitize the value of the IP total length field (header length + data length). With a crafted IP packet, an integer overflow occurs whenever the value of the IP data length is calculated by subtracting the length of the header from the total length of the IP packet.

5 /10

CVSS v2.0 :

V3 Legend

Vector :

Exploitability : 10 / Impact : 2.9

Attack Vector

Attack Complexity

Privileges Required

User Interaction

Confidentiality Impact NONE

Integrity Impact NONE

Availability Impact PARTIAL

Scope

7.5 /10

CVSS v3.0 : HIGH

V3 Legend

Vector :

Exploitability : 3.9 / Impact : 3.6

Attack Vector NETWORK

Attack Complexity LOW

Privileges Required NONE

User Interaction NONE

Confidentiality Impact NONE

Integrity Impact NONE

Availability Impact HIGH

Scope UNCHANGED

References
Link Resource
https://cert-portal.siemens.com/productcert/pdf/ssa-789208.pdf Mitigation Third Party Advisory
https://www.kb.cert.org/vuls/id/608209 Third Party Advisory US Government Resource
https://www.forescout.com/blog/new-critical-operational-technology-vulnerabilities-found-on-nichestack/ Mitigation Third Party Advisory
Configurations

Configuration 1

cpe:2.3:a:hcc-embedded:nichestack:*:*:*:*:*:*:*:*
Information

Published : 2021-08-19 12:15

Updated : 2021-08-26 06:09

NVD link : CVE-2021-31401

Mitre link : CVE-2021-31401

Products Affected
No products.
CWE
CWE-20