CVE-2020-11904

CVE-2020-11904

EPSS 3.2%CWE-190

Vexday Risk Score

3Baixo

Decisão SSVC (CISA)

Track

Sem sinal de exploração → monitorar

CVSS —EPSS 3.2%KEV nãoPoC —Nuclei —Metasploit —Patch referenciado

Ciclo de vida

17 jun 2020Publicada no NVD

Recomendação: Monitorar — sem sinal de exploração no momento.

The Treck TCP/IP stack before 6.0.1.66 has an Integer Overflow during Memory Allocation that causes an Out-of-Bounds Write.

Produtos afetados

Quer saber se a sua infraestrutura está exposta a isto?

Falar com a TrueHacking →

Referências

https://jsof-tech.com/vulnerability-disclosure-policy/https://security.netapp.com/advisory/ntap-20200625-0006/https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-treck-ip-stack-JyBQ5GyC https://www.dell.com/support/article/de-de/sln321836/dell-response-to-the-ripple20-vulnerabilities https://www.jsof-tech.com/ripple20/https://www.kb.cert.org/vuls/id/257161 https://www.kb.cert.org/vuls/id/257161/https://www.treck.com http://www.arubanetworks.com/assets/alert/ARUBA-PSA-2020-006.txt