Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
osvGoogleOSV:CVE-2020-24340
HistoryDec 11, 2020 - 11:15 p.m.

CVE-2020-24340

2020-12-1123:15:14
Google
osv.dev
7
picotcp
picotcp-ng
1.7.0
dns
out-of-bounds read
invalid pointer dereference
denial-of-service

AI Score

7

Confidence

High

EPSS

0.001

Percentile

40.3%

JSON

An issue was discovered in picoTCP and picoTCP-NG through 1.7.0. The code that processes DNS responses in pico_mdns_handle_data_as_answers_generic() in pico_mdns.c does not check whether the number of answers/responses specified in a DNS packet header corresponds to the response data available in the packet, leading to an out-of-bounds read, invalid pointer dereference, and Denial-of-Service.

Related

prion 1
cvelist 1
cve 1
nvd 1
ics 1
cert 1
prion
prion
Out-of-bounds
2020-12-11 23:15:00
cvelist
cvelist
CVE-2020-24340
2020-12-11 22:54:39
cve
cve
CVE-2020-24340
2020-12-11 23:15:14
nvd
nvd
CVE-2020-24340
2020-12-11 23:15:14
ics
ics
Multiple Embedded TCP/IP Stacks
2020-12-09 12:00:00
cert
cert
Embedded TCP/IP stacks have memory corruption vulnerabilities
2020-12-08 00:00:00

AI Score

7

Confidence

High

EPSS

0.001

Percentile

40.3%

JSON
Related for OSV:CVE-2020-24340
prion1cvelist1cve1nvd1ics1cert1