How severe is CVE-2021-33304?

CVE-2021-33304 has a CVSS v3 score of 9.8 (CRITICAL).

CVE-2021-33304

Name: picotcp-ng
Author: altran

9.8CRITICAL

Double Free vulnerability in virtualsquare picoTCP v1.7.0 and picoTCP-NG v2.1 in modules/pico_fragments.c in function pico_fragments_reassemble, allows attackers to execute arbitrary code.

Publicado: 2/15/2023Actualizado: 3/20/2025

Descripción

Double Free vulnerability in virtualsquare picoTCP v1.7.0 and picoTCP-NG v2.1 in modules/pico_fragments.c in function pico_fragments_reassemble, allows attackers to execute arbitrary code.

Análisis IAImpulsado por IA

Productos Afectados

altranpicotcp

1.7.0

altranpicotcp-ng

2.1

Referencias

https://github.com/virtualsquare/picotcp/issues/6
Issue TrackingPatchVendor Advisory
https://github.com/virtualsquare/picotcp/issues/6
Issue TrackingPatchVendor Advisory