CVE-2020-11902

Name of the Vulnerable Software and Affected Versions Treck TCP/IP stack versions prior to 6.0.1.66

Description The issue is related to an out-of-bounds read in the IPv6OverIPv4 component of the Treck TCP/IP stack. This could allow a remote attacker to impact the confidentiality, integrity, and availability of protected information.

Recommendations For versions prior to 6.0.1.66, update to version 6.0.1.66 or later to resolve the issue. As a temporary workaround, consider restricting access to the IPv6OverIPv4 tunneling component until a patch is applied.