First published: Wed Jun 17 2020(Updated: )
The Treck TCP/IP stack before 6.0.1.66 has an IPv6OverIPv4 tunneling Out-of-bounds Read.
Credit: cve@mitre.org
Affected Software | Affected Version | How to fix |
---|---|---|
Treck TCP/IP stack IPv6 | <6.0.1.66 |
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
CVE-2020-11902 is a vulnerability in the Treck TCP/IP stack that allows for an out-of-bounds read in the IPv6OverIPv4 tunneling feature.
The severity of CVE-2020-11902 is high, with a CVSS score of 7.3.
Versions of the Treck TCP/IP stack before 6.0.1.66 are affected by CVE-2020-11902.
To fix CVE-2020-11902, you should update to version 6.0.1.66 or above of the Treck TCP/IP stack.
You can find more information about CVE-2020-11902 in the following references: [http://www.arubanetworks.com/assets/alert/ARUBA-PSA-2020-006.txt](http://www.arubanetworks.com/assets/alert/ARUBA-PSA-2020-006.txt), [https://jsof-tech.com/vulnerability-disclosure-policy/](https://jsof-tech.com/vulnerability-disclosure-policy/), [https://security.netapp.com/advisory/ntap-20200625-0006/](https://security.netapp.com/advisory/ntap-20200625-0006/)