彙總 treck 相關全部產品的 CVE 與安全漏洞情報,包括 CVSS、EPSS、公開時間與漏洞情報資料。
歷史漏洞主要涉及 緩衝區溢位與記憶體損壞 等問題,部分漏洞可能導致 應用程式崩潰,並影響 軟體部署與生產負載 相關場景。
相關漏洞資料主要來源於公開漏洞披露與安全公告,可用於評估歷史漏洞暴露面與修補優先順序。
| CVE | 摘要 | 來源 | 最高 CVSS | EPSS % | 公開時間 | 更新時間 |
|---|---|---|---|---|---|---|
| CVE-2020-27338 | An issue was discovered in Treck IPv6 before 6.0.1.68. Improper Input Validation in the DHCPv6 client component allows an unauthenticated remote attacker to cause an Out of Bounds Read, and possibly a Denial of Service via adjacent network access. | [email protected] | 5.9 | 0.15% | 2020-12-22 | 2024-11-21 |
| CVE-2020-27337 | An issue was discovered in Treck IPv6 before 6.0.1.68. Improper Input Validation in the IPv6 component allows an unauthenticated remote attacker to cause an Out of Bounds Write, and possibly a Denial of Service via network access. | [email protected] | 7.3 | 0.38% | 2020-12-22 | 2025-09-30 |
| CVE-2020-27336 | An issue was discovered in Treck IPv6 before 6.0.1.68. Improper input validation in the IPv6 component when handling a packet sent by an unauthenticated remote attacker could result in an out-of-bounds read of up to three bytes via network access. | [email protected] | 3.7 | 0.27% | 2020-12-22 | 2025-09-30 |
| CVE-2020-25066 | A heap-based buffer overflow in the Treck HTTP Server component before 6.0.1.68 allows remote attackers to cause a denial of service (crash/reset) or to possibly execute arbitrary code. | [email protected] | 10.0 | 3.74% | 2020-12-22 | 2024-11-21 |
| CVE-2020-11914 | The Treck TCP/IP stack before 6.0.1.66 has an ARP Out-of-bounds Read. | [email protected] | 4.3 | 0.51% | 2020-06-17 | 2024-11-21 |
| CVE-2020-11913 | The Treck TCP/IP stack before 6.0.1.66 has an IPv6 Out-of-bounds Read. | [email protected] | 5.3 | 3.18% | 2020-06-17 | 2024-11-21 |
| CVE-2020-11912 | The Treck TCP/IP stack before 6.0.1.66 has a TCP Out-of-bounds Read. | [email protected] | 5.3 | 1.54% | 2020-06-17 | 2024-11-21 |
| CVE-2020-11911 | The Treck TCP/IP stack before 6.0.1.66 has Improper ICMPv4 Access Control. | [email protected] | 5.3 | 2.94% | 2020-06-17 | 2024-11-21 |
| CVE-2020-11910 | The Treck TCP/IP stack before 6.0.1.66 has an ICMPv4 Out-of-bounds Read. | [email protected] | 5.3 | 2.93% | 2020-06-17 | 2025-09-30 |
| CVE-2020-11909 | The Treck TCP/IP stack before 6.0.1.66 has an IPv4 Integer Underflow. | [email protected] | 5.3 | 2.43% | 2020-06-17 | 2025-09-30 |
| CVE-2020-11908 | The Treck TCP/IP stack before 4.7.1.27 mishandles '\0' termination in DHCP. | [email protected] | 4.3 | 0.56% | 2020-06-17 | 2024-11-21 |
| CVE-2020-11907 | The Treck TCP/IP stack before 6.0.1.66 improperly handles a Length Parameter Inconsistency in TCP. | [email protected] | 6.3 | 1.09% | 2020-06-17 | 2024-11-21 |
| CVE-2020-11906 | The Treck TCP/IP stack before 6.0.1.66 has an Ethernet Link Layer Integer Underflow. | [email protected] | 6.3 | 0.80% | 2020-06-17 | 2024-11-21 |
| CVE-2020-11905 | The Treck TCP/IP stack before 6.0.1.66 has a DHCPv6 Out-of-bounds Read. | [email protected] | 6.5 | 0.57% | 2020-06-17 | 2024-11-21 |
| CVE-2020-11904 | The Treck TCP/IP stack before 6.0.1.66 has an Integer Overflow during Memory Allocation that causes an Out-of-Bounds Write. | [email protected] | 7.3 | 3.45% | 2020-06-17 | 2025-09-30 |
| CVE-2020-11903 | The Treck TCP/IP stack before 6.0.1.28 has a DHCP Out-of-bounds Read. | [email protected] | 6.5 | 0.71% | 2020-06-17 | 2024-11-21 |
| CVE-2020-11902 | The Treck TCP/IP stack before 6.0.1.66 has an IPv6OverIPv4 tunneling Out-of-bounds Read. | [email protected] | 7.3 | 5.06% | 2020-06-17 | 2024-11-21 |
| CVE-2020-11901 | The Treck TCP/IP stack before 6.0.1.66 allows Remote Code execution via a single invalid DNS response. | [email protected] | 9.0 | 29.01% | 2020-06-17 | 2024-11-21 |
| CVE-2020-11900 | The Treck TCP/IP stack before 6.0.1.41 has an IPv4 tunneling Double Free. | [email protected] | 8.2 | 7.85% | 2020-06-17 | 2024-11-21 |
| CVE-2020-11899 KEV | The Treck TCP/IP stack before 6.0.1.66 has an IPv6 Out-of-bounds Read. | [email protected] | 5.4 | 35.27% | 2020-06-17 | 2025-11-07 |