Vulnerability-Lookup

CVE-2020-11913 (GCVE-0-2020-11913)

Vulnerability from cvelistv5 – Published: 2020-06-17 10:58 – Updated: 2024-08-04 11:42

Summary

The Treck TCP/IP stack before 6.0.1.66 has an IPv6 Out-of-bounds Read.

Severity ?

No CVSS data available.

CWE

Assigner

mitre

References

URL

GSD-2020-11913

Vulnerability from gsd - Updated: 2023-12-13 01:22

Details

The Treck TCP/IP stack before 6.0.1.66 has an IPv6 Out-of-bounds Read.

Aliases

CVE-2020-11913

Aliases

CVE-2020-11913

JSON

To clipboard

{
  "GSD": {
    "alias": "CVE-2020-11913",
    "description": "The Treck TCP/IP stack before 6.0.1.66 has an IPv6 Out-of-bounds Read.",
    "id": "GSD-2020-11913",
    "references": [
      "https://www.suse.com/security/cve/CVE-2020-11913.html"
    ]
  },
  "gsd": {
    "metadata": {
      "exploitCode": "unknown",
      "remediation": "unknown",
      "reportConfidence": "confirmed",
      "type": "vulnerability"
    },
    "osvSchema": {
      "aliases": [
        "CVE-2020-11913"
      ],
      "details": "The Treck TCP/IP stack before 6.0.1.66 has an IPv6 Out-of-bounds Read.",
      "id": "GSD-2020-11913",
      "modified": "2023-12-13T01:22:05.712148Z",
      "schema_version": "1.4.0"
    }
  },
  "namespaces": {
    "cve.org": {
      "CVE_data_meta": {
        "ASSIGNER": "cve@mitre.org",
        "ID": "CVE-2020-11913",
        "STATE": "PUBLIC"
      },
      "affects": {
        "vendor": {
          "vendor_data": [
            {
              "product": {
                "product_data": [
                  {
                    "product_name": "n/a",
                    "version": {
                      "version_data": [
                        {
                          "version_value": "n/a"
                        }
                      ]
                    }
                  }
                ]
              },
              "vendor_name": "n/a"
            }
          ]
        }
      },
      "data_format": "MITRE",
      "data_type": "CVE",
      "data_version": "4.0",
      "description": {
        "description_data": [
          {
            "lang": "eng",
            "value": "The Treck TCP/IP stack before 6.0.1.66 has an IPv6 Out-of-bounds Read."
          }
        ]
      },
      "problemtype": {
        "problemtype_data": [
          {
            "description": [
              {
                "lang": "eng",
                "value": "n/a"
              }
            ]
          }
        ]
      },
      "references": {
        "reference_data": [
          {
            "name": "https://www.kb.cert.org/vuls/id/257161/",
            "refsource": "MISC",
            "url": "https://www.kb.cert.org/vuls/id/257161/"
          },
          {
            "name": "https://www.treck.com",
            "refsource": "MISC",
            "url": "https://www.treck.com"
          },
          {
            "name": "https://jsof-tech.com/vulnerability-disclosure-policy/",
            "refsource": "MISC",
            "url": "https://jsof-tech.com/vulnerability-disclosure-policy/"
          },
          {
            "name": "VU#257161",
            "refsource": "CERT-VN",
            "url": "https://www.kb.cert.org/vuls/id/257161"
          },
          {
            "name": "https://www.jsof-tech.com/ripple20/",
            "refsource": "MISC",
            "url": "https://www.jsof-tech.com/ripple20/"
          },
          {
            "name": "20200617 Multiple Vulnerabilities in Treck IP Stack Affecting Cisco Products: June 2020",
            "refsource": "CISCO",
            "url": "https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-treck-ip-stack-JyBQ5GyC"
          },
          {
            "name": "http://www.arubanetworks.com/assets/alert/ARUBA-PSA-2020-006.txt",
            "refsource": "CONFIRM",
            "url": "http://www.arubanetworks.com/assets/alert/ARUBA-PSA-2020-006.txt"
          },
          {
            "name": "https://security.netapp.com/advisory/ntap-20200625-0006/",
            "refsource": "CONFIRM",
            "url": "https://security.netapp.com/advisory/ntap-20200625-0006/"
          },
          {
            "name": "https://www.dell.com/support/article/de-de/sln321836/dell-response-to-the-ripple20-vulnerabilities",
            "refsource": "MISC",
            "url": "https://www.dell.com/support/article/de-de/sln321836/dell-response-to-the-ripple20-vulnerabilities"
          }
        ]
      }
    },
    "nvd.nist.gov": {
      "configurations": {
        "CVE_data_version": "4.0",
        "nodes": [
          {
            "children": [],
            "cpe_match": [
              {
                "cpe23Uri": "cpe:2.3:a:treck:tcp\\/ip:*:*:*:*:*:*:*:*",
                "cpe_name": [],
                "versionEndExcluding": "6.0.1.66",
                "vulnerable": true
              }
            ],
            "operator": "OR"
          }
        ]
      },
      "cve": {
        "CVE_data_meta": {
          "ASSIGNER": "cve@mitre.org",
          "ID": "CVE-2020-11913"
        },
        "data_format": "MITRE",
        "data_type": "CVE",
        "data_version": "4.0",
        "description": {
          "description_data": [
            {
              "lang": "en",
              "value": "The Treck TCP/IP stack before 6.0.1.66 has an IPv6 Out-of-bounds Read."
            }
          ]
        },
        "problemtype": {
          "problemtype_data": [
            {
              "description": [
                {
                  "lang": "en",
                  "value": "CWE-125"
                }
              ]
            }
          ]
        },
        "references": {
          "reference_data": [
            {
              "name": "https://www.treck.com",
              "refsource": "MISC",
              "tags": [
                "Product",
                "Vendor Advisory"
              ],
              "url": "https://www.treck.com"
            },
            {
              "name": "https://jsof-tech.com/vulnerability-disclosure-policy/",
              "refsource": "MISC",
              "tags": [
                "Third Party Advisory"
              ],
              "url": "https://jsof-tech.com/vulnerability-disclosure-policy/"
            },
            {
              "name": "https://www.jsof-tech.com/ripple20/",
              "refsource": "MISC",
              "tags": [
                "Exploit",
                "Third Party Advisory"
              ],
              "url": "https://www.jsof-tech.com/ripple20/"
            },
            {
              "name": "https://www.kb.cert.org/vuls/id/257161/",
              "refsource": "MISC",
              "tags": [
                "Mitigation",
                "Third Party Advisory",
                "US Government Resource"
              ],
              "url": "https://www.kb.cert.org/vuls/id/257161/"
            },
            {
              "name": "20200617 Multiple Vulnerabilities in Treck IP Stack Affecting Cisco Products: June 2020",
              "refsource": "CISCO",
              "tags": [
                "Third Party Advisory"
              ],
              "url": "https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-treck-ip-stack-JyBQ5GyC"
            },
            {
              "name": "http://www.arubanetworks.com/assets/alert/ARUBA-PSA-2020-006.txt",
              "refsource": "CONFIRM",
              "tags": [],
              "url": "http://www.arubanetworks.com/assets/alert/ARUBA-PSA-2020-006.txt"
            },
            {
              "name": "https://security.netapp.com/advisory/ntap-20200625-0006/",
              "refsource": "CONFIRM",
              "tags": [],
              "url": "https://security.netapp.com/advisory/ntap-20200625-0006/"
            },
            {
              "name": "VU#257161",
              "refsource": "CERT-VN",
              "tags": [],
              "url": "https://www.kb.cert.org/vuls/id/257161"
            },
            {
              "name": "https://www.dell.com/support/article/de-de/sln321836/dell-response-to-the-ripple20-vulnerabilities",
              "refsource": "MISC",
              "tags": [],
              "url": "https://www.dell.com/support/article/de-de/sln321836/dell-response-to-the-ripple20-vulnerabilities"
            }
          ]
        }
      },
      "impact": {
        "baseMetricV2": {
          "acInsufInfo": false,
          "cvssV2": {
            "accessComplexity": "LOW",
            "accessVector": "NETWORK",
            "authentication": "NONE",
            "availabilityImpact": "NONE",
            "baseScore": 5.0,
            "confidentialityImpact": "PARTIAL",
            "integrityImpact": "NONE",
            "vectorString": "AV:N/AC:L/Au:N/C:P/I:N/A:N",
            "version": "2.0"
          },
          "exploitabilityScore": 10.0,
          "impactScore": 2.9,
          "obtainAllPrivilege": false,
          "obtainOtherPrivilege": false,
          "obtainUserPrivilege": false,
          "severity": "MEDIUM",
          "userInteractionRequired": false
        },
        "baseMetricV3": {
          "cvssV3": {
            "attackComplexity": "LOW",
            "attackVector": "NETWORK",
            "availabilityImpact": "NONE",
            "baseScore": 5.3,
            "baseSeverity": "MEDIUM",
            "confidentialityImpact": "LOW",
            "integrityImpact": "NONE",
            "privilegesRequired": "NONE",
            "scope": "UNCHANGED",
            "userInteraction": "NONE",
            "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N",
            "version": "3.1"
          },
          "exploitabilityScore": 3.9,
          "impactScore": 1.4
        }
      },
      "lastModifiedDate": "2020-07-22T01:15Z",
      "publishedDate": "2020-06-17T11:15Z"
    }
  }
}

CNVD-2020-34239

Vulnerability from cnvd - Published: 2020-06-18

Title

Treck TCP/IP IPv6组件输入验证错误漏洞

Description

Treck TCP/IP是美国Treck公司的一套专用于嵌入式系统的TCP（传输控制协议）/IP（网际互连协议）套件。 Treck TCP/IP IPv6组件存在输入验证错误漏洞。攻击者可利用漏洞导致越界读取。

Severity

低

Patch Name

Treck TCP/IP IPv6组件输入验证错误漏洞的补丁

Patch Description

Treck TCP/IP是美国Treck公司的一套专用于嵌入式系统的TCP（传输控制协议）/IP（网际互连协议）套件。 Treck TCP/IP IPv6组件存在输入验证错误漏洞。攻击者可利用漏洞导致越界读取。目前，供应商发布了安全公告及相关补丁信息，修复了此漏洞。

Formal description

厂商已发布了漏洞修复程序，请及时关注更新： https://treck.com/vulnerability-response-information/

Reference

https://www.us-cert.gov/ics/advisories/icsa-20-168-01

Impacted products

Name
Treck TCP/IP stack <6.0.1.66

Show details on source website

JSON

To clipboard

{
  "cves": {
    "cve": {
      "cveNumber": "CVE-2020-11913"
    }
  },
  "description": "Treck TCP/IP\u662f\u7f8e\u56fdTreck\u516c\u53f8\u7684\u4e00\u5957\u4e13\u7528\u4e8e\u5d4c\u5165\u5f0f\u7cfb\u7edf\u7684TCP\uff08\u4f20\u8f93\u63a7\u5236\u534f\u8bae\uff09/IP\uff08\u7f51\u9645\u4e92\u8fde\u534f\u8bae\uff09\u5957\u4ef6\u3002\n\nTreck TCP/IP IPv6\u7ec4\u4ef6\u5b58\u5728\u8f93\u5165\u9a8c\u8bc1\u9519\u8bef\u6f0f\u6d1e\u3002\u653b\u51fb\u8005\u53ef\u5229\u7528\u6f0f\u6d1e\u5bfc\u81f4\u8d8a\u754c\u8bfb\u53d6\u3002",
  "formalWay": "\u5382\u5546\u5df2\u53d1\u5e03\u4e86\u6f0f\u6d1e\u4fee\u590d\u7a0b\u5e8f\uff0c\u8bf7\u53ca\u65f6\u5173\u6ce8\u66f4\u65b0\uff1a\r\nhttps://treck.com/vulnerability-response-information/",
  "isEvent": "\u901a\u7528\u8f6f\u786c\u4ef6\u6f0f\u6d1e",
  "number": "CNVD-2020-34239",
  "openTime": "2020-06-18",
  "patchDescription": "Treck TCP/IP\u662f\u7f8e\u56fdTreck\u516c\u53f8\u7684\u4e00\u5957\u4e13\u7528\u4e8e\u5d4c\u5165\u5f0f\u7cfb\u7edf\u7684TCP\uff08\u4f20\u8f93\u63a7\u5236\u534f\u8bae\uff09/IP\uff08\u7f51\u9645\u4e92\u8fde\u534f\u8bae\uff09\u5957\u4ef6\u3002\r\n\r\nTreck TCP/IP IPv6\u7ec4\u4ef6\u5b58\u5728\u8f93\u5165\u9a8c\u8bc1\u9519\u8bef\u6f0f\u6d1e\u3002\u653b\u51fb\u8005\u53ef\u5229\u7528\u6f0f\u6d1e\u5bfc\u81f4\u8d8a\u754c\u8bfb\u53d6\u3002\u76ee\u524d\uff0c\u4f9b\u5e94\u5546\u53d1\u5e03\u4e86\u5b89\u5168\u516c\u544a\u53ca\u76f8\u5173\u8865\u4e01\u4fe1\u606f\uff0c\u4fee\u590d\u4e86\u6b64\u6f0f\u6d1e\u3002",
  "patchName": "Treck TCP/IP IPv6\u7ec4\u4ef6\u8f93\u5165\u9a8c\u8bc1\u9519\u8bef\u6f0f\u6d1e\u7684\u8865\u4e01",
  "products": {
    "product": "Treck TCP/IP stack \u003c6.0.1.66"
  },
  "referenceLink": "https://www.us-cert.gov/ics/advisories/icsa-20-168-01",
  "serverity": "\u4f4e",
  "submitTime": "2020-06-17",
  "title": "Treck TCP/IP IPv6\u7ec4\u4ef6\u8f93\u5165\u9a8c\u8bc1\u9519\u8bef\u6f0f\u6d1e"
}

CVE-2020-11913

Vulnerability from fstec - Published: 17.06.2020

Title

Уязвимость реализации протокола IPv6 TCP/IP стека Treck, позволяющая нарушителю получить несанкционированный доступ к защищаемой информации

Description

Уязвимость реализации протокола IPv6 TCP/IP стека Treck связана с чтением за границами буфера. Эксплуатация уязвимости может позволить нарушителю, действующему удаленно, получить несанкционированный доступ к защищаемой информации

Severity ?


                    
                      AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N

Vendor

Treck Inc., Cisco Systems Inc.

Software Name

Treck TCP/IP, ASR 5000, ASR 5500, Cisco Virtual Packet Core

Software Version

до 6.0.1.66 (Treck TCP/IP), до 21.5.27 (ASR 5000), до 21.20.2 (ASR 5500), до 21.20.2 (Cisco Virtual Packet Core)

Possible Mitigations

Использование рекомендаций: Для Treck TCP/IP: https://www.treck.com Для программных продуктов Cisco Systems Inc.: https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-treck-ip-stack-JyBQ5GyC

Reference

https://download.schneider-electric.com/files?p_enDocType=Technical+leaflet&p_File_Name=SESB-2020-168-01_Treck_Vulnerabilities_Security_Bulletin.pdf&p_Doc_Ref=SESB-2020-168-01 https://www.jsof-tech.com/ripple20/ https://jsof-tech.com/vulnerability-disclosure-policy/ https://www.kb.cert.org/vuls/id/257161/ https://www.treck.com https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-treck-ip-stack-JyBQ5GyC

CWE

CWE-125

JSON

To clipboard

{
  "CVSS 2.0": "AV:N/AC:L/Au:N/C:P/I:N/A:N",
  "CVSS 3.0": "AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N",
  "CVSS 4.0": null,
  "remediation_\u0418\u0434\u0435\u043d\u0442\u0438\u0444\u0438\u043a\u0430\u0442\u043e\u0440": null,
  "remediation_\u041d\u0430\u0438\u043c\u0435\u043d\u043e\u0432\u0430\u043d\u0438\u0435": null,
  "\u0412\u0435\u043d\u0434\u043e\u0440 \u041f\u041e": "Treck Inc., Cisco Systems Inc.",
  "\u0412\u0435\u0440\u0441\u0438\u044f \u041f\u041e": "\u0434\u043e 6.0.1.66 (Treck TCP/IP), \u0434\u043e 21.5.27 (ASR 5000), \u0434\u043e 21.20.2 (ASR 5500), \u0434\u043e 21.20.2 (Cisco Virtual Packet Core)",
  "\u0412\u043e\u0437\u043c\u043e\u0436\u043d\u044b\u0435 \u043c\u0435\u0440\u044b \u043f\u043e \u0443\u0441\u0442\u0440\u0430\u043d\u0435\u043d\u0438\u044e": "\u0418\u0441\u043f\u043e\u043b\u044c\u0437\u043e\u0432\u0430\u043d\u0438\u0435 \u0440\u0435\u043a\u043e\u043c\u0435\u043d\u0434\u0430\u0446\u0438\u0439:\n\u0414\u043b\u044f Treck TCP/IP:\nhttps://www.treck.com\n\n\u0414\u043b\u044f \u043f\u0440\u043e\u0433\u0440\u0430\u043c\u043c\u043d\u044b\u0445 \u043f\u0440\u043e\u0434\u0443\u043a\u0442\u043e\u0432 Cisco Systems Inc.:\nhttps://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-treck-ip-stack-JyBQ5GyC",
  "\u0414\u0430\u0442\u0430 \u0432\u044b\u044f\u0432\u043b\u0435\u043d\u0438\u044f": "17.06.2020",
  "\u0414\u0430\u0442\u0430 \u043f\u043e\u0441\u043b\u0435\u0434\u043d\u0435\u0433\u043e \u043e\u0431\u043d\u043e\u0432\u043b\u0435\u043d\u0438\u044f": "13.09.2024",
  "\u0414\u0430\u0442\u0430 \u043f\u0443\u0431\u043b\u0438\u043a\u0430\u0446\u0438\u0438": "21.04.2021",
  "\u0418\u0434\u0435\u043d\u0442\u0438\u0444\u0438\u043a\u0430\u0442\u043e\u0440": "BDU:2021-02143",
  "\u0418\u0434\u0435\u043d\u0442\u0438\u0444\u0438\u043a\u0430\u0442\u043e\u0440\u044b \u0434\u0440\u0443\u0433\u0438\u0445 \u0441\u0438\u0441\u0442\u0435\u043c \u043e\u043f\u0438\u0441\u0430\u043d\u0438\u0439 \u0443\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u0438": "CVE-2020-11913",
  "\u0418\u043d\u0444\u043e\u0440\u043c\u0430\u0446\u0438\u044f \u043e\u0431 \u0443\u0441\u0442\u0440\u0430\u043d\u0435\u043d\u0438\u0438": "\u0423\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u044c \u0443\u0441\u0442\u0440\u0430\u043d\u0435\u043d\u0430",
  "\u041a\u043b\u0430\u0441\u0441 \u0443\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u0438": "\u0423\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u044c \u043a\u043e\u0434\u0430",
  "\u041d\u0430\u0437\u0432\u0430\u043d\u0438\u0435 \u041f\u041e": "Treck TCP/IP, ASR 5000, ASR 5500, Cisco Virtual Packet Core",
  "\u041d\u0430\u0438\u043c\u0435\u043d\u043e\u0432\u0430\u043d\u0438\u0435 \u041e\u0421 \u0438 \u0442\u0438\u043f \u0430\u043f\u043f\u0430\u0440\u0430\u0442\u043d\u043e\u0439 \u043f\u043b\u0430\u0442\u0444\u043e\u0440\u043c\u044b": null,
  "\u041d\u0430\u0438\u043c\u0435\u043d\u043e\u0432\u0430\u043d\u0438\u0435 \u0443\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u0438": "\u0423\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u044c \u0440\u0435\u0430\u043b\u0438\u0437\u0430\u0446\u0438\u0438 \u043f\u0440\u043e\u0442\u043e\u043a\u043e\u043b\u0430 IPv6 TCP/IP \u0441\u0442\u0435\u043a\u0430 Treck, \u043f\u043e\u0437\u0432\u043e\u043b\u044f\u044e\u0449\u0430\u044f \u043d\u0430\u0440\u0443\u0448\u0438\u0442\u0435\u043b\u044e \u043f\u043e\u043b\u0443\u0447\u0438\u0442\u044c \u043d\u0435\u0441\u0430\u043d\u043a\u0446\u0438\u043e\u043d\u0438\u0440\u043e\u0432\u0430\u043d\u043d\u044b\u0439 \u0434\u043e\u0441\u0442\u0443\u043f \u043a \u0437\u0430\u0449\u0438\u0449\u0430\u0435\u043c\u043e\u0439 \u0438\u043d\u0444\u043e\u0440\u043c\u0430\u0446\u0438\u0438",
  "\u041d\u0430\u043b\u0438\u0447\u0438\u0435 \u044d\u043a\u0441\u043f\u043b\u043e\u0439\u0442\u0430": "\u0421\u0443\u0449\u0435\u0441\u0442\u0432\u0443\u0435\u0442 \u0432 \u043e\u0442\u043a\u0440\u044b\u0442\u043e\u043c \u0434\u043e\u0441\u0442\u0443\u043f\u0435",
  "\u041e\u043f\u0438\u0441\u0430\u043d\u0438\u0435 \u043e\u0448\u0438\u0431\u043a\u0438 CWE": "\u0427\u0442\u0435\u043d\u0438\u0435 \u0437\u0430 \u0433\u0440\u0430\u043d\u0438\u0446\u0430\u043c\u0438 \u0431\u0443\u0444\u0435\u0440\u0430 (CWE-125)",
  "\u041e\u043f\u0438\u0441\u0430\u043d\u0438\u0435 \u0443\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u0438": "\u0423\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u044c \u0440\u0435\u0430\u043b\u0438\u0437\u0430\u0446\u0438\u0438 \u043f\u0440\u043e\u0442\u043e\u043a\u043e\u043b\u0430 IPv6 TCP/IP \u0441\u0442\u0435\u043a\u0430 Treck \u0441\u0432\u044f\u0437\u0430\u043d\u0430 \u0441 \u0447\u0442\u0435\u043d\u0438\u0435\u043c \u0437\u0430 \u0433\u0440\u0430\u043d\u0438\u0446\u0430\u043c\u0438 \u0431\u0443\u0444\u0435\u0440\u0430. \u042d\u043a\u0441\u043f\u043b\u0443\u0430\u0442\u0430\u0446\u0438\u044f \u0443\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u0438 \u043c\u043e\u0436\u0435\u0442 \u043f\u043e\u0437\u0432\u043e\u043b\u0438\u0442\u044c \u043d\u0430\u0440\u0443\u0448\u0438\u0442\u0435\u043b\u044e, \u0434\u0435\u0439\u0441\u0442\u0432\u0443\u044e\u0449\u0435\u043c\u0443 \u0443\u0434\u0430\u043b\u0435\u043d\u043d\u043e, \u043f\u043e\u043b\u0443\u0447\u0438\u0442\u044c \u043d\u0435\u0441\u0430\u043d\u043a\u0446\u0438\u043e\u043d\u0438\u0440\u043e\u0432\u0430\u043d\u043d\u044b\u0439 \u0434\u043e\u0441\u0442\u0443\u043f \u043a \u0437\u0430\u0449\u0438\u0449\u0430\u0435\u043c\u043e\u0439 \u0438\u043d\u0444\u043e\u0440\u043c\u0430\u0446\u0438\u0438",
  "\u041f\u043e\u0441\u043b\u0435\u0434\u0441\u0442\u0432\u0438\u044f \u044d\u043a\u0441\u043f\u043b\u0443\u0430\u0442\u0430\u0446\u0438\u0438 \u0443\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u0438": null,
  "\u041f\u0440\u043e\u0447\u0430\u044f \u0438\u043d\u0444\u043e\u0440\u043c\u0430\u0446\u0438\u044f": null,
  "\u0421\u0432\u044f\u0437\u044c \u0441 \u0438\u043d\u0446\u0438\u0434\u0435\u043d\u0442\u0430\u043c\u0438 \u0418\u0411": "\u0414\u0430\u043d\u043d\u044b\u0435 \u0443\u0442\u043e\u0447\u043d\u044f\u044e\u0442\u0441\u044f",
  "\u0421\u043e\u0441\u0442\u043e\u044f\u043d\u0438\u0435 \u0443\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u0438": "\u041e\u043f\u0443\u0431\u043b\u0438\u043a\u043e\u0432\u0430\u043d\u0430",
  "\u0421\u043f\u043e\u0441\u043e\u0431 \u0443\u0441\u0442\u0440\u0430\u043d\u0435\u043d\u0438\u044f": "\u041e\u0431\u043d\u043e\u0432\u043b\u0435\u043d\u0438\u0435 \u043f\u0440\u043e\u0433\u0440\u0430\u043c\u043c\u043d\u043e\u0433\u043e \u043e\u0431\u0435\u0441\u043f\u0435\u0447\u0435\u043d\u0438\u044f",
  "\u0421\u043f\u043e\u0441\u043e\u0431 \u044d\u043a\u0441\u043f\u043b\u0443\u0430\u0442\u0430\u0446\u0438\u0438": "\u041c\u0430\u043d\u0438\u043f\u0443\u043b\u0438\u0440\u043e\u0432\u0430\u043d\u0438\u0435 \u0441\u0442\u0440\u0443\u043a\u0442\u0443\u0440\u0430\u043c\u0438 \u0434\u0430\u043d\u043d\u044b\u0445",
  "\u0421\u0441\u044b\u043b\u043a\u0438 \u043d\u0430 \u0438\u0441\u0442\u043e\u0447\u043d\u0438\u043a\u0438": "https://download.schneider-electric.com/files?p_enDocType=Technical+leaflet\u0026p_File_Name=SESB-2020-168-01_Treck_Vulnerabilities_Security_Bulletin.pdf\u0026p_Doc_Ref=SESB-2020-168-01\nhttps://www.jsof-tech.com/ripple20/\nhttps://jsof-tech.com/vulnerability-disclosure-policy/\nhttps://www.kb.cert.org/vuls/id/257161/\nhttps://www.treck.com\nhttps://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-treck-ip-stack-JyBQ5GyC",
  "\u0421\u0442\u0430\u0442\u0443\u0441 \u0443\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u0438": "\u041f\u043e\u0434\u0442\u0432\u0435\u0440\u0436\u0434\u0435\u043d\u0430 \u043f\u0440\u043e\u0438\u0437\u0432\u043e\u0434\u0438\u0442\u0435\u043b\u0435\u043c",
  "\u0422\u0438\u043f \u041f\u041e": "\u0421\u0435\u0442\u0435\u0432\u043e\u0435 \u043f\u0440\u043e\u0433\u0440\u0430\u043c\u043c\u043d\u043e\u0435 \u0441\u0440\u0435\u0434\u0441\u0442\u0432\u043e, \u041f\u041e \u0441\u0435\u0442\u0435\u0432\u043e\u0433\u043e \u043f\u0440\u043e\u0433\u0440\u0430\u043c\u043c\u043d\u043e-\u0430\u043f\u043f\u0430\u0440\u0430\u0442\u043d\u043e\u0433\u043e \u0441\u0440\u0435\u0434\u0441\u0442\u0432\u0430, \u0421\u0435\u0442\u0435\u0432\u043e\u0435 \u0441\u0440\u0435\u0434\u0441\u0442\u0432\u043e",
  "\u0422\u0438\u043f \u043e\u0448\u0438\u0431\u043a\u0438 CWE": "CWE-125",
  "\u0423\u0440\u043e\u0432\u0435\u043d\u044c \u043e\u043f\u0430\u0441\u043d\u043e\u0441\u0442\u0438 \u0443\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u0438": "\u0421\u0440\u0435\u0434\u043d\u0438\u0439 \u0443\u0440\u043e\u0432\u0435\u043d\u044c \u043e\u043f\u0430\u0441\u043d\u043e\u0441\u0442\u0438 (\u0431\u0430\u0437\u043e\u0432\u0430\u044f \u043e\u0446\u0435\u043d\u043a\u0430 CVSS 2.0 \u0441\u043e\u0441\u0442\u0430\u0432\u043b\u044f\u0435\u0442 5)\n\u0421\u0440\u0435\u0434\u043d\u0438\u0439 \u0443\u0440\u043e\u0432\u0435\u043d\u044c \u043e\u043f\u0430\u0441\u043d\u043e\u0441\u0442\u0438 (\u0431\u0430\u0437\u043e\u0432\u0430\u044f \u043e\u0446\u0435\u043d\u043a\u0430 CVSS 3.0 \u0441\u043e\u0441\u0442\u0430\u0432\u043b\u044f\u0435\u0442 5,3)"
}

GHSA-RGG4-RGQ2-H589

Vulnerability from github – Published: 2022-05-24 17:20 – Updated: 2022-05-24 17:20

Details

The Treck TCP/IP stack before 6.0.1.66 has an IPv6 Out-of-bounds Read.

Show details on source website

JSON

To clipboard

{
  "affected": [],
  "aliases": [
    "CVE-2020-11913"
  ],
  "database_specific": {
    "cwe_ids": [],
    "github_reviewed": false,
    "github_reviewed_at": null,
    "nvd_published_at": "2020-06-17T11:15:00Z",
    "severity": "MODERATE"
  },
  "details": "The Treck TCP/IP stack before 6.0.1.66 has an IPv6 Out-of-bounds Read.",
  "id": "GHSA-rgg4-rgq2-h589",
  "modified": "2022-05-24T17:20:45Z",
  "published": "2022-05-24T17:20:45Z",
  "references": [
    {
      "type": "ADVISORY",
      "url": "https://nvd.nist.gov/vuln/detail/CVE-2020-11913"
    },
    {
      "type": "WEB",
      "url": "https://jsof-tech.com/vulnerability-disclosure-policy"
    },
    {
      "type": "WEB",
      "url": "https://security.netapp.com/advisory/ntap-20200625-0006"
    },
    {
      "type": "WEB",
      "url": "https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-treck-ip-stack-JyBQ5GyC"
    },
    {
      "type": "WEB",
      "url": "https://www.dell.com/support/article/de-de/sln321836/dell-response-to-the-ripple20-vulnerabilities"
    },
    {
      "type": "WEB",
      "url": "https://www.jsof-tech.com/ripple20"
    },
    {
      "type": "WEB",
      "url": "https://www.kb.cert.org/vuls/id/257161"
    },
    {
      "type": "WEB",
      "url": "https://www.treck.com"
    },
    {
      "type": "WEB",
      "url": "http://www.arubanetworks.com/assets/alert/ARUBA-PSA-2020-006.txt"
    }
  ],
  "schema_version": "1.4.0",
  "severity": []
}

CERTFR-2020-AVI-375

Vulnerability from certfr_avis - Published: 2021-01-08 - Updated: 2021-01-08

Le 16 juin 2020, des chercheurs ont annoncé la découverte de dix-neuf vulnérabilités dans l'implémentation de la pile TCP/IP de Treck.

Ce composant est utilisé dans de nombreux systèmes embarqués et objets connectés, dont certains équipements médicaux et équipements de contrôle industriel. Les vulnérabilités les plus critiques permettent une exécution de code arbitraire à distance.

Lorsque des vulnérabilités sont découvertes dans un composant d'aussi bas niveau, il est très difficile de compiler une liste exhaustive de produits vulnérables. De plus, la simple présence de ce composant dans un produit n'implique pas forcément que celui-ci est vulnérable, parce que la vulnérabilité a déjà été corrigée ou encore parce que ce composant a été modifié et que la vulnérabilité n'est pas forcément atteignable.

Le CERT Carneggie Mellon ainsi que les chercheurs ont proposé sur leurs sites respectifs une liste de produits vulnérables et certains éditeurs ont déjà communiqué sur le statut de leurs produits (cf. section Documentation).

Parmi les dix-neuf vulnérabilités, les trois les plus critiques sont identifiées comme :

CVE-2020-11896 : des datagrammes UDP fragmentés sur plusieurs paquets IP peuvent permettre un exécution de code arbitraire à distance ou un déni de service à distance sur des équipements avec une fonction d'IP Tunneling activée ;
CVE-2020-11897 : des paquets IPv6 mal formés permettent une exécution de code arbitraire à distance [1] ;
CVE-2020-11901 : une réponse DNS mal formée permet une exécution de code arbitraire à distance.

Si ces vulnérabilités sont jugées critiques, leur impact est atténué par les conditions d’exploitabilité.

Il convient donc de vérifier dans un premier temps si les équipements en bordure de réseau sont dans une configuration vulnérable. Si c'est le cas, il faut alors appliquer les mises à jour si elles sont disponibles ou mettre en œuvre les mesures de contournement.

[mise à jour du 26 octobre 2020] Les avis de sécurité Schneider Electric SEVD-2020-174-01 et SEVD-2020-175-01 ont été mis à jour le 22 octobre 2020 suite à la découverte d'impacts supplémentaires sur les produits Schneider. Des correctifs sont en cours de développement, certains ont déjà été publiés et des mesures de contournement sont identifiées et listées dans les avis à jour.

[1] cette vulnérabilité a été corrigée dans la version 5.0.1.35, sans être accompagnée d'un avis de sécurité à l'époque de sa mise à disposition.

Solution

Se référer au bulletin de sécurité des éditeurs pour l'obtention des correctifs (cf. section Documentation).

None

Impacted products

	Vendor	Product	Description
	N/A	N/A	versions de la pile TCP/IP de Treck antérieures à 6.0.1.66

References

Title

Publication Time

Tags

Référence CVE CVE-2020-11903	-	other
Référence CVE CVE-2020-11905	-	other
Bulletin de sécurité Schneider SEVD-2020-174-01 du 22 juin 2020, mis à jour le 23 juin 2020 et mis à jour le 22 octobre 2020	-	other
Bulletin de sécurité Schneider SEVD-2020-175-01 du 23 juin 2020 mis à jour le 22 octobre 2020	-	other
Référence CVE CVE-2020-11911	-	other
Annonce de Moxa du 30 juin 2020	-	other
Référence CVE CVE-2020-11902	-	other
Bulletin de sécurité Aruba ARUBA-PSA-2020-006 du 23 juin 2020	-	other
Communication de Green Hills Software du 16 juin 2020	-	other
Référence CVE CVE-2020-11897	-	other
Bulletin de sécurité Treck du 16 juin 2020	-	other
Référence CVE CVE-2020-11908	-	other
Référence CVE CVE-2020-11907	-	other
Référence CVE CVE-2020-11910	-	other
Bulletin de sécurité Palo Alto Networks PAN-SA-2020-0007 du 08 juillet 2020	-	other
Communication de Braun du 12 juin 2020	-	other
Référence CVE CVE-2020-11906	-	other
Référence CVE CVE-2020-11904	-	other
Bulletin de sécurité HP HPSBPI03666 du 12 juin 2020	-	other
Bulletin de sécurité Cisco cisco-sa-treck-ip-stack-JyBQ5GyC du 17 juin 2020	-	other
Référence CVE CVE-2020-11914	-	other
Billet de blogue Ripple20 du 16 juin 2020	-	other
Référence CVE CVE-2020-11898	-	other
Référence CVE CVE-2020-11912	-	other
Avis de sécurité du CERT Carnegie Mellon du 16 juin 2020	-	other
Référence CVE CVE-2020-11900	-	other
Avis de sécurité ICS-CERT ICSA-20-168-01 du 16 juin 2020	-	other
Référence CVE CVE-2020-11909	-	other
Référence CVE CVE-2020-11901	-	other
Référence CVE CVE-2020-11913	-	other
Référence CVE CVE-2020-11896	-	other
Référence CVE CVE-2020-11899	-	other
Bulletin de sécurité Schneider SEVD-2020-168-01 du 22 juin 2020, mis à jour le 23 juin 2020	-	other

Show details on source website

JSON

To clipboard

{
  "$ref": "https://www.cert.ssi.gouv.fr/openapi.json",
  "affected_systems": [
    {
      "description": "versions de la pile TCP/IP de Treck ant\u00e9rieures \u00e0 6.0.1.66",
      "product": {
        "name": "N/A",
        "vendor": {
          "name": "N/A",
          "scada": false
        }
      }
    }
  ],
  "affected_systems_content": null,
  "content": "## Solution\n\nSe r\u00e9f\u00e9rer au bulletin de s\u00e9curit\u00e9 des \u00e9diteurs pour l\u0027obtention des\ncorrectifs (cf. section Documentation).\n",
  "cves": [
    {
      "name": "CVE-2020-11913",
      "url": "https://www.cve.org/CVERecord?id=CVE-2020-11913"
    },
    {
      "name": "CVE-2020-11910",
      "url": "https://www.cve.org/CVERecord?id=CVE-2020-11910"
    },
    {
      "name": "CVE-2020-11899",
      "url": "https://www.cve.org/CVERecord?id=CVE-2020-11899"
    },
    {
      "name": "CVE-2020-11908",
      "url": "https://www.cve.org/CVERecord?id=CVE-2020-11908"
    },
    {
      "name": "CVE-2020-11906",
      "url": "https://www.cve.org/CVERecord?id=CVE-2020-11906"
    },
    {
      "name": "CVE-2020-11914",
      "url": "https://www.cve.org/CVERecord?id=CVE-2020-11914"
    },
    {
      "name": "CVE-2020-11897",
      "url": "https://www.cve.org/CVERecord?id=CVE-2020-11897"
    },
    {
      "name": "CVE-2020-11911",
      "url": "https://www.cve.org/CVERecord?id=CVE-2020-11911"
    },
    {
      "name": "CVE-2020-11900",
      "url": "https://www.cve.org/CVERecord?id=CVE-2020-11900"
    },
    {
      "name": "CVE-2020-11903",
      "url": "https://www.cve.org/CVERecord?id=CVE-2020-11903"
    },
    {
      "name": "CVE-2020-11912",
      "url": "https://www.cve.org/CVERecord?id=CVE-2020-11912"
    },
    {
      "name": "CVE-2020-11901",
      "url": "https://www.cve.org/CVERecord?id=CVE-2020-11901"
    },
    {
      "name": "CVE-2020-11904",
      "url": "https://www.cve.org/CVERecord?id=CVE-2020-11904"
    },
    {
      "name": "CVE-2020-11907",
      "url": "https://www.cve.org/CVERecord?id=CVE-2020-11907"
    },
    {
      "name": "CVE-2020-11905",
      "url": "https://www.cve.org/CVERecord?id=CVE-2020-11905"
    },
    {
      "name": "CVE-2020-11898",
      "url": "https://www.cve.org/CVERecord?id=CVE-2020-11898"
    },
    {
      "name": "CVE-2020-11896",
      "url": "https://www.cve.org/CVERecord?id=CVE-2020-11896"
    },
    {
      "name": "CVE-2020-11909",
      "url": "https://www.cve.org/CVERecord?id=CVE-2020-11909"
    },
    {
      "name": "CVE-2020-11902",
      "url": "https://www.cve.org/CVERecord?id=CVE-2020-11902"
    }
  ],
  "initial_release_date": "2021-01-08T00:00:00",
  "last_revision_date": "2021-01-08T00:00:00",
  "links": [
    {
      "title": "R\u00e9f\u00e9rence CVE CVE-2020-11903",
      "url": "https://www.cve.org/CVERecord?id=CVE-2020-11903"
    },
    {
      "title": "R\u00e9f\u00e9rence CVE CVE-2020-11905",
      "url": "https://www.cve.org/CVERecord?id=CVE-2020-11905"
    },
    {
      "title": "Bulletin de s\u00e9curit\u00e9 Schneider SEVD-2020-174-01 du 22 juin 2020, mis \u00e0 jour le 23 juin 2020 et mis \u00e0 jour le 22 octobre 2020",
      "url": "https://www.se.com/ww/en/download/document/SEVD-2020-174-01/"
    },
    {
      "title": "Bulletin de s\u00e9curit\u00e9 Schneider SEVD-2020-175-01 du 23 juin 2020 mis \u00e0 jour le 22 octobre 2020",
      "url": "https://www.se.com/ww/en/download/document/SEVD-2020-175-01/"
    },
    {
      "title": "R\u00e9f\u00e9rence CVE CVE-2020-11911",
      "url": "https://www.cve.org/CVERecord?id=CVE-2020-11911"
    },
    {
      "title": "Annonce de Moxa du 30 juin 2020",
      "url": "https://www.moxa.com/en/support/support/security-advisory/moxas-response-regarding-the-ripple20-vulnerabilities"
    },
    {
      "title": "R\u00e9f\u00e9rence CVE CVE-2020-11902",
      "url": "https://www.cve.org/CVERecord?id=CVE-2020-11902"
    },
    {
      "title": "Bulletin de s\u00e9curit\u00e9 Aruba ARUBA-PSA-2020-006 du 23 juin 2020",
      "url": "https://www.arubanetworks.com/assets/alert/ARUBA-PSA-2020-006.txt"
    },
    {
      "title": "Communication de Green Hills Software du 16 juin 2020",
      "url": "https://support.ghs.com/psirt/PSA-2020-05/"
    },
    {
      "title": "R\u00e9f\u00e9rence CVE CVE-2020-11897",
      "url": "https://www.cve.org/CVERecord?id=CVE-2020-11897"
    },
    {
      "title": "Bulletin de s\u00e9curit\u00e9 Treck du 16 juin 2020",
      "url": "https://treck.com/vulnerability-response-information/"
    },
    {
      "title": "R\u00e9f\u00e9rence CVE CVE-2020-11908",
      "url": "https://www.cve.org/CVERecord?id=CVE-2020-11908"
    },
    {
      "title": "R\u00e9f\u00e9rence CVE CVE-2020-11907",
      "url": "https://www.cve.org/CVERecord?id=CVE-2020-11907"
    },
    {
      "title": "R\u00e9f\u00e9rence CVE CVE-2020-11910",
      "url": "https://www.cve.org/CVERecord?id=CVE-2020-11910"
    },
    {
      "title": "Bulletin de s\u00e9curit\u00e9 Palo Alto Networks PAN-SA-2020-0007 du 08 juillet 2020",
      "url": "https://security.paloaltonetworks.com/PAN-SA-2020-0007"
    },
    {
      "title": "Communication de Braun du 12 juin 2020",
      "url": "https://www.bbraunusa.com/content/dam/b-braun/us/website/customer_communications/Skyline%20Response_Outlook_6.9.2020_FINAL1.pdf"
    },
    {
      "title": "R\u00e9f\u00e9rence CVE CVE-2020-11906",
      "url": "https://www.cve.org/CVERecord?id=CVE-2020-11906"
    },
    {
      "title": "R\u00e9f\u00e9rence CVE CVE-2020-11904",
      "url": "https://www.cve.org/CVERecord?id=CVE-2020-11904"
    },
    {
      "title": "Bulletin de s\u00e9curit\u00e9 HP HPSBPI03666 du 12 juin 2020",
      "url": "https://support.hp.com/in-en/document/c06640149"
    },
    {
      "title": "Bulletin de s\u00e9curit\u00e9 Cisco cisco-sa-treck-ip-stack-JyBQ5GyC du 17 juin 2020",
      "url": "https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-treck-ip-stack-JyBQ5GyC"
    },
    {
      "title": "R\u00e9f\u00e9rence CVE CVE-2020-11914",
      "url": "https://www.cve.org/CVERecord?id=CVE-2020-11914"
    },
    {
      "title": "Billet de blogue Ripple20 du 16 juin 2020",
      "url": "https://www.jsof-tech.com/ripple20/"
    },
    {
      "title": "R\u00e9f\u00e9rence CVE CVE-2020-11898",
      "url": "https://www.cve.org/CVERecord?id=CVE-2020-11898"
    },
    {
      "title": "R\u00e9f\u00e9rence CVE CVE-2020-11912",
      "url": "https://www.cve.org/CVERecord?id=CVE-2020-11912"
    },
    {
      "title": "Avis de s\u00e9curit\u00e9 du CERT Carnegie Mellon du 16 juin 2020",
      "url": "https://kb.cert.org/vuls/id/257161"
    },
    {
      "title": "R\u00e9f\u00e9rence CVE CVE-2020-11900",
      "url": "https://www.cve.org/CVERecord?id=CVE-2020-11900"
    },
    {
      "title": "Avis de s\u00e9curit\u00e9 ICS-CERT ICSA-20-168-01 du 16 juin 2020",
      "url": "https://www.us-cert.gov/ics/advisories/icsa-20-168-01"
    },
    {
      "title": "R\u00e9f\u00e9rence CVE CVE-2020-11909",
      "url": "https://www.cve.org/CVERecord?id=CVE-2020-11909"
    },
    {
      "title": "R\u00e9f\u00e9rence CVE CVE-2020-11901",
      "url": "https://www.cve.org/CVERecord?id=CVE-2020-11901"
    },
    {
      "title": "R\u00e9f\u00e9rence CVE CVE-2020-11913",
      "url": "https://www.cve.org/CVERecord?id=CVE-2020-11913"
    },
    {
      "title": "R\u00e9f\u00e9rence CVE CVE-2020-11896",
      "url": "https://www.cve.org/CVERecord?id=CVE-2020-11896"
    },
    {
      "title": "R\u00e9f\u00e9rence CVE CVE-2020-11899",
      "url": "https://www.cve.org/CVERecord?id=CVE-2020-11899"
    },
    {
      "title": "Bulletin de s\u00e9curit\u00e9 Schneider SEVD-2020-168-01 du 22 juin 2020, mis \u00e0 jour le 23 juin 2020",
      "url": "https://download.schneider-electric.com/files?p_enDocType=Technical+leaflet\u0026p_File_Name=SESB-2020-168-01_Treck_Vulnerabilities_Security_Bulletin.pdf\u0026p_Doc_Ref=SESB-2020-168-01"
    }
  ],
  "reference": "CERTFR-2020-AVI-375",
  "revisions": [
    {
      "description": "Version initiale",
      "revision_date": "2021-01-08T00:00:00.000000"
    }
  ],
  "risks": [
    {
      "description": "D\u00e9ni de service \u00e0 distance"
    },
    {
      "description": "Ex\u00e9cution de code arbitraire \u00e0 distance"
    },
    {
      "description": "Atteinte \u00e0 l\u0027int\u00e9grit\u00e9 des donn\u00e9es"
    },
    {
      "description": "Atteinte \u00e0 la confidentialit\u00e9 des donn\u00e9es"
    }
  ],
  "summary": "Le 16 juin 2020, des chercheurs ont annonc\u00e9 la d\u00e9couverte de dix-neuf\nvuln\u00e9rabilit\u00e9s dans l\u0027impl\u00e9mentation de la pile TCP/IP de Treck.\n\nCe composant est utilis\u00e9 dans de nombreux syst\u00e8mes embarqu\u00e9s et objets\nconnect\u00e9s, dont certains \u00e9quipements m\u00e9dicaux et \u00e9quipements de contr\u00f4le\nindustriel. Les vuln\u00e9rabilit\u00e9s les plus critiques permettent une\nex\u00e9cution de code arbitraire \u00e0 distance.\n\nLorsque des vuln\u00e9rabilit\u00e9s sont d\u00e9couvertes dans un composant d\u0027aussi\nbas niveau, il est tr\u00e8s difficile de compiler une liste exhaustive de\nproduits vuln\u00e9rables. De plus, la simple pr\u00e9sence de ce composant dans\nun produit n\u0027implique pas forc\u00e9ment que celui-ci est vuln\u00e9rable, parce\nque la vuln\u00e9rabilit\u00e9 a d\u00e9j\u00e0 \u00e9t\u00e9 corrig\u00e9e ou encore parce que ce\ncomposant a \u00e9t\u00e9 modifi\u00e9 et que la vuln\u00e9rabilit\u00e9 n\u0027est pas forc\u00e9ment\natteignable.\n\nLe CERT Carneggie Mellon ainsi que les chercheurs ont propos\u00e9 sur leurs\nsites respectifs une liste de produits vuln\u00e9rables et certains \u00e9diteurs\nont d\u00e9j\u00e0 communiqu\u00e9 sur le statut de leurs produits (cf. section\nDocumentation).\n\nParmi les dix-neuf vuln\u00e9rabilit\u00e9s, les trois les plus critiques sont\nidentifi\u00e9es comme :\n\n-   CVE-2020-11896 : des datagrammes UDP fragment\u00e9s sur plusieurs\n    paquets IP peuvent permettre un ex\u00e9cution de code arbitraire \u00e0\n    distance ou un d\u00e9ni de service \u00e0 distance sur des \u00e9quipements avec\n    une fonction d\u0027IP Tunneling activ\u00e9e ;\n-   CVE-2020-11897 : des paquets IPv6 mal form\u00e9s permettent une\n    ex\u00e9cution de code arbitraire \u00e0 distance \\[1\\] ;\n-   CVE-2020-11901 : une r\u00e9ponse DNS mal form\u00e9e permet une ex\u00e9cution de\n    code arbitraire \u00e0 distance.\n\nSi ces vuln\u00e9rabilit\u00e9s sont jug\u00e9es critiques, leur impact est att\u00e9nu\u00e9 par\nles conditions d\u2019exploitabilit\u00e9.\n\nIl convient donc de v\u00e9rifier dans un premier temps si les \u00e9quipements en\nbordure de r\u00e9seau sont dans une configuration vuln\u00e9rable. Si c\u0027est le\ncas, il faut alors appliquer les mises \u00e0 jour si elles sont disponibles\nou mettre en \u0153uvre les mesures de contournement.\n\n\u003cstrong\u003e\\[mise \u00e0 jour du 26 octobre 2020\\]\u003c/strong\u003e Les avis de s\u00e9curit\u00e9 Schneider\nElectric SEVD-2020-174-01 et SEVD-2020-175-01 ont \u00e9t\u00e9 mis \u00e0 jour le 22\noctobre 2020 suite \u00e0 la d\u00e9couverte d\u0027impacts suppl\u00e9mentaires sur les\nproduits Schneider. Des correctifs sont en cours de d\u00e9veloppement,\ncertains ont d\u00e9j\u00e0 \u00e9t\u00e9 publi\u00e9s et des mesures de contournement sont\nidentifi\u00e9es et list\u00e9es dans les avis \u00e0 jour.\n\n\u00a0\n\n\\[1\\] cette vuln\u00e9rabilit\u00e9 a \u00e9t\u00e9 corrig\u00e9e dans la version 5.0.1.35, sans\n\u00eatre accompagn\u00e9e d\u0027un avis de s\u00e9curit\u00e9 \u00e0 l\u0027\u00e9poque de sa mise \u00e0\ndisposition.\n",
  "title": "[M\u00e0J] Multiples vuln\u00e9rabilit\u00e9s dans la pile TCP/IP de Treck",
  "vendor_advisories": []
}

FKIE_CVE-2020-11913

Vulnerability from fkie_nvd - Published: 2020-06-17 11:15 - Updated: 2024-11-21 04:58

Severity ?

5.3 (Medium) - CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N

Summary

The Treck TCP/IP stack before 6.0.1.66 has an IPv6 Out-of-bounds Read.

References

URL	Tags
cve@mitre.org	http://www.arubanetworks.com/assets/alert/ARUBA-PSA-2020-006.txt
cve@mitre.org	https://jsof-tech.com/vulnerability-disclosure-policy/	Third Party Advisory
cve@mitre.org	https://security.netapp.com/advisory/ntap-20200625-0006/
cve@mitre.org	https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-treck-ip-stack-JyBQ5GyC	Third Party Advisory
cve@mitre.org	https://www.dell.com/support/article/de-de/sln321836/dell-response-to-the-ripple20-vulnerabilities
cve@mitre.org	https://www.jsof-tech.com/ripple20/	Exploit, Third Party Advisory
cve@mitre.org	https://www.kb.cert.org/vuls/id/257161
cve@mitre.org	https://www.kb.cert.org/vuls/id/257161/	Mitigation, Third Party Advisory, US Government Resource
cve@mitre.org	https://www.treck.com	Product, Vendor Advisory
af854a3a-2127-422b-91ae-364da2661108	http://www.arubanetworks.com/assets/alert/ARUBA-PSA-2020-006.txt
af854a3a-2127-422b-91ae-364da2661108	https://jsof-tech.com/vulnerability-disclosure-policy/	Third Party Advisory
af854a3a-2127-422b-91ae-364da2661108	https://security.netapp.com/advisory/ntap-20200625-0006/
af854a3a-2127-422b-91ae-364da2661108	https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-treck-ip-stack-JyBQ5GyC	Third Party Advisory
af854a3a-2127-422b-91ae-364da2661108	https://www.dell.com/support/article/de-de/sln321836/dell-response-to-the-ripple20-vulnerabilities
af854a3a-2127-422b-91ae-364da2661108	https://www.jsof-tech.com/ripple20/	Exploit, Third Party Advisory
af854a3a-2127-422b-91ae-364da2661108	https://www.kb.cert.org/vuls/id/257161
af854a3a-2127-422b-91ae-364da2661108	https://www.kb.cert.org/vuls/id/257161/	Mitigation, Third Party Advisory, US Government Resource
af854a3a-2127-422b-91ae-364da2661108	https://www.treck.com	Product, Vendor Advisory

Impacted products

	Vendor	Product	Version
	treck	tcp\/ip	*

JSON

To clipboard

{
  "configurations": [
    {
      "nodes": [
        {
          "cpeMatch": [
            {
              "criteria": "cpe:2.3:a:treck:tcp\\/ip:*:*:*:*:*:*:*:*",
              "matchCriteriaId": "51F9D0DF-D9F0-4183-AC07-C799EFFE36C8",
              "versionEndExcluding": "6.0.1.66",
              "vulnerable": true
            }
          ],
          "negate": false,
          "operator": "OR"
        }
      ]
    }
  ],
  "cveTags": [],
  "descriptions": [
    {
      "lang": "en",
      "value": "The Treck TCP/IP stack before 6.0.1.66 has an IPv6 Out-of-bounds Read."
    },
    {
      "lang": "es",
      "value": "La pila de Treck TCP/IP versiones anteriores a 6.0.1.66, presenta una Lectura Fuera de L\u00edmites de IPv6"
    }
  ],
  "id": "CVE-2020-11913",
  "lastModified": "2024-11-21T04:58:53.403",
  "metrics": {
    "cvssMetricV2": [
      {
        "acInsufInfo": false,
        "baseSeverity": "MEDIUM",
        "cvssData": {
          "accessComplexity": "LOW",
          "accessVector": "NETWORK",
          "authentication": "NONE",
          "availabilityImpact": "NONE",
          "baseScore": 5.0,
          "confidentialityImpact": "PARTIAL",
          "integrityImpact": "NONE",
          "vectorString": "AV:N/AC:L/Au:N/C:P/I:N/A:N",
          "version": "2.0"
        },
        "exploitabilityScore": 10.0,
        "impactScore": 2.9,
        "obtainAllPrivilege": false,
        "obtainOtherPrivilege": false,
        "obtainUserPrivilege": false,
        "source": "nvd@nist.gov",
        "type": "Primary",
        "userInteractionRequired": false
      }
    ],
    "cvssMetricV31": [
      {
        "cvssData": {
          "attackComplexity": "LOW",
          "attackVector": "NETWORK",
          "availabilityImpact": "NONE",
          "baseScore": 5.3,
          "baseSeverity": "MEDIUM",
          "confidentialityImpact": "LOW",
          "integrityImpact": "NONE",
          "privilegesRequired": "NONE",
          "scope": "UNCHANGED",
          "userInteraction": "NONE",
          "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N",
          "version": "3.1"
        },
        "exploitabilityScore": 3.9,
        "impactScore": 1.4,
        "source": "nvd@nist.gov",
        "type": "Primary"
      }
    ]
  },
  "published": "2020-06-17T11:15:11.287",
  "references": [
    {
      "source": "cve@mitre.org",
      "url": "http://www.arubanetworks.com/assets/alert/ARUBA-PSA-2020-006.txt"
    },
    {
      "source": "cve@mitre.org",
      "tags": [
        "Third Party Advisory"
      ],
      "url": "https://jsof-tech.com/vulnerability-disclosure-policy/"
    },
    {
      "source": "cve@mitre.org",
      "url": "https://security.netapp.com/advisory/ntap-20200625-0006/"
    },
    {
      "source": "cve@mitre.org",
      "tags": [
        "Third Party Advisory"
      ],
      "url": "https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-treck-ip-stack-JyBQ5GyC"
    },
    {
      "source": "cve@mitre.org",
      "url": "https://www.dell.com/support/article/de-de/sln321836/dell-response-to-the-ripple20-vulnerabilities"
    },
    {
      "source": "cve@mitre.org",
      "tags": [
        "Exploit",
        "Third Party Advisory"
      ],
      "url": "https://www.jsof-tech.com/ripple20/"
    },
    {
      "source": "cve@mitre.org",
      "url": "https://www.kb.cert.org/vuls/id/257161"
    },
    {
      "source": "cve@mitre.org",
      "tags": [
        "Mitigation",
        "Third Party Advisory",
        "US Government Resource"
      ],
      "url": "https://www.kb.cert.org/vuls/id/257161/"
    },
    {
      "source": "cve@mitre.org",
      "tags": [
        "Product",
        "Vendor Advisory"
      ],
      "url": "https://www.treck.com"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "url": "http://www.arubanetworks.com/assets/alert/ARUBA-PSA-2020-006.txt"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "tags": [
        "Third Party Advisory"
      ],
      "url": "https://jsof-tech.com/vulnerability-disclosure-policy/"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "url": "https://security.netapp.com/advisory/ntap-20200625-0006/"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "tags": [
        "Third Party Advisory"
      ],
      "url": "https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-treck-ip-stack-JyBQ5GyC"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "url": "https://www.dell.com/support/article/de-de/sln321836/dell-response-to-the-ripple20-vulnerabilities"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "tags": [
        "Exploit",
        "Third Party Advisory"
      ],
      "url": "https://www.jsof-tech.com/ripple20/"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "url": "https://www.kb.cert.org/vuls/id/257161"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "tags": [
        "Mitigation",
        "Third Party Advisory",
        "US Government Resource"
      ],
      "url": "https://www.kb.cert.org/vuls/id/257161/"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "tags": [
        "Product",
        "Vendor Advisory"
      ],
      "url": "https://www.treck.com"
    }
  ],
  "sourceIdentifier": "cve@mitre.org",
  "vulnStatus": "Modified",
  "weaknesses": [
    {
      "description": [
        {
          "lang": "en",
          "value": "CWE-125"
        }
      ],
      "source": "nvd@nist.gov",
      "type": "Primary"
    }
  ]
}

Sightings

Author	Source	Type	Date

Nomenclature

Seen: The vulnerability was mentioned, discussed, or observed by the user.
Confirmed: The vulnerability has been validated from an analyst's perspective.
Published Proof of Concept: A public proof of concept is available for this vulnerability.
Exploited: The vulnerability was observed as exploited by the user who reported the sighting.
Patched: The vulnerability was observed as successfully patched by the user who reported the sighting.
Not exploited: The vulnerability was not observed as exploited by the user who reported the sighting.
Not confirmed: The user expressed doubt about the validity of the vulnerability.
Not patched: The vulnerability was not observed as successfully patched by the user who reported the sighting.

Detection rules are retrieved from Rulezet.

Action not permitted

CVE-2020-11913 (GCVE-0-2020-11913)

GSD-2020-11913

CNVD-2020-34239

CVE-2020-11913

GHSA-RGG4-RGQ2-H589

CERTFR-2020-AVI-375

Solution

FKIE_CVE-2020-11913

Tags

Sightings

Nomenclature