TreckCVEs & Vulnerabilities

24 CVEs affecting Treck products, tracked from the National Vulnerability Database, with CVSS/EPSS scores and exploitation status.

Most Affected Products

tcp\/ip 21ipv6 3
CVE-2020-11899KEVMEDIUMin the wild

The Treck TCP/IP stack before 6.0.1.66 has an IPv6 Out-of-bounds Read.

3 Mar 2022
5.4
CVSS
CVE-2020-27338HIGH

An issue was discovered in Treck IPv6 before 6.0.1.68. Improper Input Validation in the DHCPv6 client component allows an unauthenticated remote attacker to cause an Out of Bounds Read, and possibly a Denial of Service via adjacent network access.

23 Dec 2020
7.1
CVSS
CVE-2020-27337HIGH

An issue was discovered in Treck IPv6 before 6.0.1.68. Improper Input Validation in the IPv6 component allows an unauthenticated remote attacker to cause an Out of Bounds Write, and possibly a Denial of Service via network access.

23 Dec 2020
7.3
CVSS
CVE-2020-27336MEDIUM

An issue was discovered in Treck IPv6 before 6.0.1.68. Improper input validation in the IPv6 component when handling a packet sent by an unauthenticated remote attacker could result in an out-of-bounds read of up to three bytes via network access.

23 Dec 2020
5.3
CVSS
CVE-2020-25066CRITICAL

A heap-based buffer overflow in the Treck HTTP Server component before 6.0.1.68 allows remote attackers to cause a denial of service (crash/reset) or to possibly execute arbitrary code.

23 Dec 2020
9.8
CVSS
CVE-2020-11914MEDIUM

The Treck TCP/IP stack before 6.0.1.66 has an ARP Out-of-bounds Read.

17 Jun 2020
4.3
CVSS
CVE-2020-11913MEDIUM

The Treck TCP/IP stack before 6.0.1.66 has an IPv6 Out-of-bounds Read.

17 Jun 2020
5.3
CVSS
CVE-2020-11912MEDIUM

The Treck TCP/IP stack before 6.0.1.66 has a TCP Out-of-bounds Read.

17 Jun 2020
5.3
CVSS
CVE-2020-11911MEDIUM

The Treck TCP/IP stack before 6.0.1.66 has Improper ICMPv4 Access Control.

17 Jun 2020
5.3
CVSS
CVE-2020-11910MEDIUM

The Treck TCP/IP stack before 6.0.1.66 has an ICMPv4 Out-of-bounds Read.

17 Jun 2020
5.3
CVSS
CVE-2020-11909MEDIUM

The Treck TCP/IP stack before 6.0.1.66 has an IPv4 Integer Underflow.

17 Jun 2020
5.3
CVSS
CVE-2020-11908MEDIUM

The Treck TCP/IP stack before 4.7.1.27 mishandles '\0' termination in DHCP.

17 Jun 2020
4.3
CVSS
CVE-2020-11907MEDIUM

The Treck TCP/IP stack before 6.0.1.66 improperly handles a Length Parameter Inconsistency in TCP.

17 Jun 2020
6.3
CVSS
CVE-2020-11906MEDIUM

The Treck TCP/IP stack before 6.0.1.66 has an Ethernet Link Layer Integer Underflow.

17 Jun 2020
6.3
CVSS
CVE-2020-11905MEDIUM

The Treck TCP/IP stack before 6.0.1.66 has a DHCPv6 Out-of-bounds Read.

17 Jun 2020
6.5
CVSS
CVE-2020-11904HIGH

The Treck TCP/IP stack before 6.0.1.66 has an Integer Overflow during Memory Allocation that causes an Out-of-Bounds Write.

17 Jun 2020
7.3
CVSS
CVE-2020-11903MEDIUM

The Treck TCP/IP stack before 6.0.1.28 has a DHCP Out-of-bounds Read.

17 Jun 2020
6.5
CVSS
CVE-2020-11902HIGH

The Treck TCP/IP stack before 6.0.1.66 has an IPv6OverIPv4 tunneling Out-of-bounds Read.

17 Jun 2020
7.3
CVSS
CVE-2020-11901CRITICAL

The Treck TCP/IP stack before 6.0.1.66 allows Remote Code execution via a single invalid DNS response.

17 Jun 2020
9.0
CVSS
CVE-2020-11900HIGH

The Treck TCP/IP stack before 6.0.1.41 has an IPv4 tunneling Double Free.

17 Jun 2020
8.2
CVSS
CVE-2020-11898CRITICAL

The Treck TCP/IP stack before 6.0.1.66 improperly handles an IPv4/ICMPv4 Length Parameter Inconsistency, which might allow remote attackers to trigger an information leak.

17 Jun 2020
9.1
CVSS
CVE-2020-11897CRITICAL

The Treck TCP/IP stack before 5.0.1.35 has an Out-of-Bounds Write via multiple malformed IPv6 packets.

17 Jun 2020
10.0
CVSS
CVE-2020-11896CRITICAL

The Treck TCP/IP stack before 6.0.1.66 allows Remote Code Execution, related to IPv4 tunneling.

17 Jun 2020
10.0
CVSS
CVE-2020-10136MEDIUM

IP-in-IP protocol specifies IP Encapsulation within IP standard (RFC 2003, STD 1) that decapsulate and route IP-in-IP traffic is vulnerable to spoofing, access-control bypass and other unexpected behavior due to the lack of validation to verify network packets before decapsulation and routing.

2 Jun 2020
5.3
CVSS
← PrevPage 1 / 1Next →