CyberSec.Space Logo
Back to CVE Browser

CVE-2020-11897

CRITICAL
10.0
CVSS Severity Score
EPSS Score0.1740%
EPSS Percentile31.18th
PublishedJun 17, 2020
Last ModifiedNov 21, 2024

Vulnerability Description

The Treck TCP/IP stack before 5.0.1.35 has an Out-of-Bounds Write via multiple malformed IPv6 packets.

Affected Platforms (CPE)

πŸ“¦
Treck

Tcp\/ip

< 5.0.1.35

References & Advisories

πŸ”— http://www.arubanetworks.com/assets/alert/ARUBA-PSA-2020-006.txt
πŸ”— https://jsof-tech.com/vulnerability-disclosure-policy/
πŸ”— https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-treck-ip-stack-JyBQ5GyC
πŸ”— https://www.dell.com/support/article/de-de/sln321836/dell-response-to-the-ripple20-vulnerabilities
πŸ”— https://www.jsof-tech.com/ripple20/
πŸ”— https://www.kb.cert.org/vuls/id/257161
πŸ”— https://www.kb.cert.org/vuls/id/257161/
πŸ”— https://www.treck.com

Related Vulnerabilities

CVE-1999-060110.0

A network intrusion detection system (IDS) does not properly handle data within TCP handshake packets.

CVE-2018-399110.0

An exploitable heap overflow vulnerability exists in the WkbProgramLow function of WibuKey Network server management, version 6.40...

CVE-2018-291310.0

Vulnerability in the Oracle GoldenGate component of Oracle GoldenGate (subcomponent: Monitoring Manager). Supported versions that ...

CVE-1999-066110.0

A system is running a version of software that was replaced with a Trojan Horse at one of its distribution points, such as (1) TCP...