A heap-based buffer overflow in the Treck HTTP Server component before 6.0.1.68 allows remote attackers to cause a denial of service (crash/reset) or to possibly execute arbitrary code.
CVSS Score
10.0
EPSS Score
0.037
Published
2020-12-22
The Treck TCP/IP stack before 6.0.1.66 has an ICMPv4 Out-of-bounds Read.
CVSS Score
5.3
EPSS Score
0.023
Published
2020-06-17
The Treck TCP/IP stack before 6.0.1.66 has Improper ICMPv4 Access Control.
CVSS Score
5.3
EPSS Score
0.045
Published
2020-06-17
The Treck TCP/IP stack before 6.0.1.66 has a TCP Out-of-bounds Read.
CVSS Score
5.3
EPSS Score
0.016
Published
2020-06-17
The Treck TCP/IP stack before 6.0.1.66 has an IPv6 Out-of-bounds Read.
CVSS Score
5.3
EPSS Score
0.018
Published
2020-06-17
The Treck TCP/IP stack before 6.0.1.66 has an ARP Out-of-bounds Read.
CVSS Score
4.3
EPSS Score
0.005
Published
2020-06-17
The Treck TCP/IP stack before 5.0.1.35 has an Out-of-Bounds Write via multiple malformed IPv6 packets.
CVSS Score
10.0
EPSS Score
0.016
Published
2020-06-17
The Treck TCP/IP stack before 6.0.1.66 improperly handles an IPv4/ICMPv4 Length Parameter Inconsistency, which might allow remote attackers to trigger an information leak.
CVSS Score
9.1
EPSS Score
0.678
Published
2020-06-17
CVE-2020-11899
The Treck TCP/IP stack before 6.0.1.66 has an IPv6 Out-of-bounds Read.
Known exploited
CVSS Score
5.4
EPSS Score
0.417
Published
2020-06-17
The Treck TCP/IP stack before 6.0.1.41 has an IPv4 tunneling Double Free.
CVSS Score
8.2
EPSS Score
0.082
Published
2020-06-17
Page 1