Treck: >> Tcp/ip >> 6.0.1.41 Security Vulnerabilities
A heap-based buffer overflow in the Treck HTTP Server component before 6.0.1.68 allows remote attackers to cause a denial of service (crash/reset) or to possibly execute arbitrary code.
CVSS Score
10.0
EPSS Score
0.037
Published
2020-12-22
The Treck TCP/IP stack before 6.0.1.66 has an ICMPv4 Out-of-bounds Read.
CVSS Score
5.3
EPSS Score
0.031
Published
2020-06-17
The Treck TCP/IP stack before 6.0.1.66 has Improper ICMPv4 Access Control.
CVSS Score
5.3
EPSS Score
0.059
Published
2020-06-17
The Treck TCP/IP stack before 6.0.1.66 has a TCP Out-of-bounds Read.
CVSS Score
5.3
EPSS Score
0.016
Published
2020-06-17
The Treck TCP/IP stack before 6.0.1.66 has an IPv6 Out-of-bounds Read.
CVSS Score
5.3
EPSS Score
0.024
Published
2020-06-17
The Treck TCP/IP stack before 6.0.1.66 has an ARP Out-of-bounds Read.
CVSS Score
4.3
EPSS Score
0.005
Published
2020-06-17
The Treck TCP/IP stack before 6.0.1.66 improperly handles an IPv4/ICMPv4 Length Parameter Inconsistency, which might allow remote attackers to trigger an information leak.
CVSS Score
9.1
EPSS Score
0.724
Published
2020-06-17
CVE-2020-11899
The Treck TCP/IP stack before 6.0.1.66 has an IPv6 Out-of-bounds Read.
Known exploited
CVSS Score
5.4
EPSS Score
0.402
Published
2020-06-17
The Treck TCP/IP stack before 6.0.1.66 allows Remote Code execution via a single invalid DNS response.
CVSS Score
9.0
EPSS Score
0.31
Published
2020-06-17
The Treck TCP/IP stack before 6.0.1.66 has an IPv6OverIPv4 tunneling Out-of-bounds Read.
CVSS Score
7.3
EPSS Score
0.042
Published
2020-06-17
Page 1