High severity7.5NVD Advisory· Published Aug 19, 2021· Updated Jun 17, 2026
CVE-2020-35684
CVE-2020-35684
Description
An issue was discovered in HCC Nichestack 3.0. The code that parses TCP packets relies on an unchecked value of the IP payload size (extracted from the IP header) to compute the length of the TCP payload within the TCP checksum computation function. When the IP payload size is set to be smaller than the size of the IP header, the TCP checksum computation function may read out of bounds (a low-impact write-out-of-bounds is also possible).
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
2- HCC/Nichestackdescription
- Range: = 3.0
Patches
Vulnerability mechanics
References
4- cert-portal.siemens.com/productcert/pdf/ssa-789208.pdfnvdMitigationThird Party Advisory
- www.forescout.com/blog/new-critical-operational-technology-vulnerabilities-found-on-nichestack/nvdMitigationThird Party Advisory
- www.kb.cert.org/vuls/id/608209nvdThird Party AdvisoryUS Government Resource
- www.hcc-embedded.comnvdProduct
News mentions
0No linked articles in our index yet.