cbcvebase.
CVE-2020-11900
published 2020-06-17

CVE-2020-11900: The Treck TCP/IP stack before 6.0.1.41 has an IPv4 tunneling Double Free.

PriorityP275high8.2CVSS 3.1
AVNACLPRNUINSUCNILAH
ITWVulnCheck KEV
Exploited in the wild
EPSS
12.85%
95.8th percentile
The Treck TCP/IP stack before 6.0.1.41 has an IPv4 tunneling Double Free.

Affected

2 ranges
VendorProductVersion rangeFixed in
paloaltopan-os
trecktcp_ip< 6.0.1.416.0.1.41

Detection & IOCsextracted from sources · hover to see the quote

  • Target systems running Treck TCP/IP stack versions before 6.0.1.41 are vulnerable; look for IPv4 tunneling traffic (IP-in-IP, GRE, etc.) directed at embedded/IoT devices that may use Treck stack
  • CVE-2020-11900 is part of the Ripple20 vulnerability set disclosed June 16, 2020; monitor for exploitation attempts targeting embedded devices using Treck IP stack, which may result in remote code execution, DoS, or information disclosure
  • ·Cisco tracks this vulnerability under Bug ID CSCvu68945; multiple Cisco products may be affected and the advisory was subject to updates as additional information became available
  • ·The vulnerable condition is specifically in IPv4 tunneling handling (Double Free, CWE-415); detection should focus on malformed or unexpected IPv4-in-IPv4 tunnel packets sent to devices using Treck stack versions prior to 6.0.1.41

CVSS provenance

nvdv3.18.2HIGHCVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:H
nvdv2.06.4MEDIUMAV:N/AC:L/Au:N/C:N/I:P/A:P
vulncheck8.2HIGH
CVEs like this are exactly what “Exploited This Week” covers.

Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.