3 matches found
ArubaOS-Switch Ripple20 Multiple Vulnerabilities (ARUBA-PSA-2020-006)
The version of ArubaOS-Switch installed on the remote host is affected by multiple vulnerabilities in the Treck IP stack implementation. The vulnerabilities are collectively known as Ripple20, and can result in remote code execution, denial of service DoS, and information disclosure by remote,...
Ripple20: Multiple Vulnerabilities Identified in Treck TCP/IP Stack
Multiple vulnerabilities that use a low-level TCP/IP software library developed by Treck, Inc. were identified recently in implementations of the Treck IP stack for embedded systems. These vulnerabilities were discovered by the JSOF research lab and have been named Ripple20. Ripple20...
CVE-2020-11907
CVE-2020-11907 concerns the Treck TCP/IP stack before version 6.0.1.66, which allegedly “improperly handles a Length Parameter Inconsistency in TCP.” The initial description lists an Adjacent Network attack vector with Low attack complexity and no authentication, and CVSS scores: CVSS2 base 5.8 (...