CVE-2021-36762

EUVD-2021-23350
An issue was discovered in HCC Embedded InterNiche NicheStack through 4.3. The tfshnd():tftpsrv.c TFTP packet processing function doesn't ensure that a filename is adequately '\0' terminated; therefore, a subsequent call to strlen for the filename might read out of bounds of the protocol packet buffer (if no '\0' byte exists within a reasonable range).
ProviderTypeBase ScoreAtk. VectorAtk. ComplexityPriv. RequiredVector
NISTPrimary
7.5 HIGH
NETWORK
LOW
NONE
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N
Base Score
CVSS 3.x
EPSS Score
Percentile: 57%
Affected Products (NVD)
VendorProductVersion
hcc-embeddednichestack
𝑥
< 4.3
𝑥
= Vulnerable software versions
References
https://www.forescout.com/blog/new-critical-operational-technology-vulnerabilities-found-on-nichestack/
https://www.hcc-embedded.com/about/about-interniche
https://www.kb.cert.org/vuls/id/608209
https://www.forescout.com/blog/new-critical-operational-technology-vulnerabilities-found-on-nichestack/
https://www.hcc-embedded.com/about/about-interniche
https://www.kb.cert.org/vuls/id/608209