CVE-2023-35849: VirtualSquare picoTCP (aka PicoTCP-NG) through 2.1 does not properly check whether header sizes would result in accessing data outside of a packet.

0.0 CVSS

Description

VirtualSquare picoTCP (aka PicoTCP-NG) through 2.1 does not properly check whether header sizes would result in accessing data outside of a packet.

CVSS Base Severity: LOW

CVSS Base Score: 0.0

Vendor: n/a

Product: n/a

EPSS Score: 0.12% (probability of being exploited)

EPSS Percentile: 46.7% (scored less or equal to compared to others)

EPSS Date: 2025-02-03 (when was this score calculated)

2024-12-12 00:30:44 UTC
CVE

VirtualSquare picoTCP (aka PicoTCP-NG) through 2.1 does not properly check whether header sizes would result in accessing data outside of a packet.