CVE-2020-11906 - The Treck TCP/IP stack before 6.0.1.66 has an Ethernet Link Layer Integer Underflow.

CVE-2020-11906

Summary

The Treck TCP/IP stack before 6.0.1.66 has an Ethernet Link Layer Integer Underflow.

References

Vulnerable Configurations

cpe:2.3:a:treck:tcp\/ip:4.7.1.27:*:*:*:*:*:*:*
cpe:2.3:a:treck:tcp\/ip:4.7.1.27:*:*:*:*:*:*:*
cpe:2.3:a:treck:tcp\/ip:5.0.1.35:*:*:*:*:*:*:*
cpe:2.3:a:treck:tcp\/ip:5.0.1.35:*:*:*:*:*:*:*
cpe:2.3:a:treck:tcp\/ip:6.0.1.28:*:*:*:*:*:*:*
cpe:2.3:a:treck:tcp\/ip:6.0.1.28:*:*:*:*:*:*:*
cpe:2.3:a:treck:tcp\/ip:6.0.1.41:*:*:*:*:*:*:*
cpe:2.3:a:treck:tcp\/ip:6.0.1.41:*:*:*:*:*:*:*

CVSS

CWE

CAPEC

Access

Vector	Complexity	Authentication
ADJACENT_NETWORK	LOW	NONE

Impact

Confidentiality	Integrity	Availability
PARTIAL	PARTIAL	PARTIAL

cvss-vector via4

AV:A/AC:L/Au:N/C:P/I:P/A:P

refmap via4

cert-vn	VU#257161
cisco	20200617 Multiple Vulnerabilities in Treck IP Stack Affecting Cisco Products: June 2020
confirm	http://www.arubanetworks.com/assets/alert/ARUBA-PSA-2020-006.txt https://security.netapp.com/advisory/ntap-20200625-0006/
misc	https://jsof-tech.com/vulnerability-disclosure-policy/ https://support.hpe.com/hpesc/public/docDisplay?docLocale=en_US&docId=hpesbhf04012en_us https://www.dell.com/support/article/de-de/sln321836/dell-response-to-the-ripple20-vulnerabilities https://www.jsof-tech.com/ripple20/ https://www.kb.cert.org/vuls/id/257161/ https://www.treck.com

Last major update

22-07-2020 - 01:15

Published

17-06-2020 - 11:15

Last modified

22-07-2020 - 01:15