Security Vulnerabilities - CVEs Published In June 2020
The Treck TCP/IP stack before 6.0.1.66 has an ARP Out-of-bounds Read.
CVSS Score
4.3
EPSS Score
0.006
Published
2020-06-17
The Treck TCP/IP stack before 5.0.1.35 has an Out-of-Bounds Write via multiple malformed IPv6 packets.
CVSS Score
10.0
EPSS Score
0.024
Published
2020-06-17
The Treck TCP/IP stack before 6.0.1.66 improperly handles an IPv4/ICMPv4 Length Parameter Inconsistency, which might allow remote attackers to trigger an information leak.
CVSS Score
9.1
EPSS Score
0.724
Published
2020-06-17
CVE-2020-11899
The Treck TCP/IP stack before 6.0.1.66 has an IPv6 Out-of-bounds Read.
Known exploited
CVSS Score
5.4
EPSS Score
0.423
Published
2020-06-17
The Treck TCP/IP stack before 6.0.1.41 has an IPv4 tunneling Double Free.
CVSS Score
8.2
EPSS Score
0.108
Published
2020-06-17
The Treck TCP/IP stack before 6.0.1.66 allows Remote Code execution via a single invalid DNS response.
CVSS Score
9.0
EPSS Score
0.218
Published
2020-06-17
The Treck TCP/IP stack before 6.0.1.66 has an IPv6OverIPv4 tunneling Out-of-bounds Read.
CVSS Score
7.3
EPSS Score
0.042
Published
2020-06-17
The Treck TCP/IP stack before 6.0.1.28 has a DHCP Out-of-bounds Read.
CVSS Score
6.5
EPSS Score
0.006
Published
2020-06-17
The Treck TCP/IP stack before 6.0.1.66 has an Integer Overflow during Memory Allocation that causes an Out-of-Bounds Write.
CVSS Score
7.3
EPSS Score
0.029
Published
2020-06-17
The Treck TCP/IP stack before 6.0.1.66 has a DHCPv6 Out-of-bounds Read.
CVSS Score
6.5
EPSS Score
0.007
Published
2020-06-17