CVEInsight.

Free vulnerability intelligence for developers, security teams, and researchers. Data sourced from public databases for informational purposes only.

Explore

Legal

CVE data sourced from NVD / NIST & public disclosures.

weston-embedded

uc-tcp-ip

3 known vulnerabilities · sorted by CVSS score

CVE-2023-38562

HIGH8.7

A double-free vulnerability exists in the IP header loopback parsing functionality of Weston Embedded uC-TCP-IP v3.06.01. A specially crafted set of network packets can lead to memory corruption, potentially resulting in code execution. An attacker can send a sequence of unauthenticated packets to trigger this vulnerability.

weston-embedded / uc-tcp-ip

Network

Published Feb 20, 2024

CVE-2023-39540

MEDIUM5.9

A denial of service vulnerability exists in the ICMP and ICMPv6 parsing functionality of Weston Embedded uC-TCP-IP v3.06.01. A specially crafted network packet can lead to an out-of-bounds read. An attacker can send a malicious packet to trigger this vulnerability.This vulnerability concerns a denial of service within the parsing an IPv4 ICMP packet.

weston-embedded / uc-tcp-ip

Network

Published Feb 20, 2024

CVE-2023-39541

MEDIUM5.9

weston-embedded / uc-tcp-ip

Network

Published Feb 20, 2024