Lucene search
K

8 matches found

RedhatCVE
RedhatCVE
added 2025/05/22 3:11 p.m.6 views

CVE-2020-11901

The Treck TCP/IP stack before 6.0.1.66 allows Remote Code execution via a single invalid DNS response...

9.3CVSS7.3AI score0.21115EPSS
Exploits1References1
Tenable Nessus
Tenable Nessus
added 2021/06/30 12:0 a.m.679 views

ArubaOS-Switch Ripple20 Multiple Vulnerabilities (ARUBA-PSA-2020-006)

The version of ArubaOS-Switch installed on the remote host is affected by multiple vulnerabilities in the Treck IP stack implementation. The vulnerabilities are collectively known as Ripple20, and can result in remote code execution, denial of service DoS, and information disclosure by remote,...

10CVSS6.7AI score0.36965EPSS
Exploits21References20
Trellix
Trellix
added 2020/08/05 12:0 a.m.35 views

Ripple20 Critical Vulnerabilities – Detection Logic and Signatures

ARCHIVED STORY Ripple20 Critical Vulnerabilities – Detection Logic and Signatures By Steve Povolny · August 05, 2020 This document has been prepared by McAfee Advanced Threat Research in collaboration with JSOF who discovered and responsibly disclosed the vulnerabilities. It is intended to serve ...

0.36965EPSS
Exploits4
Trellix
Trellix
added 2020/08/05 12:0 a.m.30 views

Ripple20 Critical Vulnerabilities – Detection Logic and Signatures

ARCHIVED STORY Ripple20 Critical Vulnerabilities – Detection Logic and Signatures By Steve Povolny · August 05, 2020 This document has been prepared by McAfee Advanced Threat Research in collaboration with JSOF who discovered and responsibly disclosed the vulnerabilities. It is intended to serve ...

9.3CVSS9.9AI score0.21115EPSS
Exploits1
Qualys Blog
Qualys Blog
added 2020/06/24 11:24 p.m.371 views

Ripple20: Multiple Vulnerabilities Identified in Treck TCP/IP Stack

Multiple vulnerabilities that use a low-level TCP/IP software library developed by Treck, Inc. were identified recently in implementations of the Treck IP stack for embedded systems. These vulnerabilities were discovered by the JSOF research lab and have been named Ripple20. Ripple20...

10CVSS1AI score0.36965EPSS
Exploits17
OSV
OSV
added 2020/06/17 11:15 a.m.4 views

CVE-2020-11901

The Treck TCP/IP stack before 6.0.1.66 allows Remote Code execution via a single invalid DNS response...

9CVSS5.9AI score0.21115EPSS
Exploits1References8
CVE
CVE
added 2020/06/17 10:34 a.m.285 views

CVE-2020-11901

CVE-2020-11901 affects the Treck TCP/IP stack (embedded) where the DNS resolver branch can be triggered by a single invalid DNS response to allow Remote Code Execution. The issue exists in Treck IP stack prior to 6.0.1.66; exploitation is network-based and rated CRITICAL (CVSSv3: AV:N/AC:H/PR:N/U...

9.3CVSS9.2AI score0.21115EPSS
In wildExploits1References8Affected Software1
ThreatPost
ThreatPost
added 2020/06/16 4:22 p.m.567 views

'Ripple20' Bugs Impact Hundreds of Millions of Connected Devices

A series of 19 different vulnerabilities, four of them critical, are affecting hundreds of millions of internet of things IoT and industrial-control devices. The issue is based in the supply chain and code reuse, with the bugs affecting a TCP/IP software library developed by Treck that many...

10CVSS0.1AI score0.36965EPSS
Exploits9References7
Rows per page
Query Builder