{"id":"CVE-2020-13987","details":"An issue was discovered in Contiki through 3.0. An Out-of-Bounds Read vulnerability exists in the uIP TCP/IP Stack component when calculating the checksums for IP packets in upper_layer_chksum in net/ipv4/uip.c.","modified":"2026-03-14T10:11:43.443213Z","published":"2020-12-11T22:15:12.543Z","related":["SUSE-RU-2021:1517-1","SUSE-SU-2021:0663-1","SUSE-SU-2021:1164-1","SUSE-SU-2022:2806-1"],"references":[{"type":"ADVISORY","url":"https://us-cert.cisa.gov/ics/advisories/icsa-20-343-01"},{"type":"ADVISORY","url":"https://www.kb.cert.org/vuls/id/815128"},{"type":"FIX","url":"https://cert-portal.siemens.com/productcert/pdf/ssa-541018.pdf"}],"affected":[{"ranges":[{"type":"GIT","repo":"https://github.com/adamdunkels/uip","events":[{"introduced":"0"},{"last_affected":"a49def743f6e5c7d0c0f2d724f0b8e0c563a4a37"}],"database_specific":{"versions":[{"introduced":"0"},{"last_affected":"1.0"}]}}],"versions":["uip-0-5","uip-0-6","uip-0-9","uip-1-0"],"database_specific":{"unresolved_ranges":[{"events":[{"introduced":"0"},{"last_affected":"2.1.12"}]},{"events":[{"introduced":"0"},{"fixed":"4.4.1"}]},{"events":[{"introduced":"0"},{"fixed":"4.4.1"}]},{"events":[{"introduced":"0"},{"fixed":"2.4.7"}]},{"events":[{"introduced":"0"},{"fixed":"2.3.0"}]}],"source":"https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2020-13987.json"}}],"schema_version":"1.7.5","severity":[{"type":"CVSS_V3","score":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H"}]}