Ripple20 - Critical Vulnerabilities in low-level TCP/IP software library developed by Treck
Fortinet PSIRT Advisories
Fortinet PSIRT Contact:
Website: https://fortiguard.fortinet.com/faq/psirt-contact
FG-IR-20-104
Final
1
1
2020-07-30T00:00:00
Current version
2020-07-30T00:00:00
2020-07-30T00:00:00
On June 16, 2020, cybersecurity researchers from JSOF published a set of 19 vulnerabilities, dubbed Ripple20 that are impacting the TCP/IP stack developed by Treck. A remote attacker can exploit some of these vulnerabilities to take control of an affected system.
Information disclosure, Execute unauthorized code or commands
Fortinet products do not use the low-level TCP/IP software library developed by Treck, Inc and are therefore not impacted by these vulnerabilities.
https://fortiguard.fortinet.com/psirt/FG-IR-20-104
Ripple20 - Critical Vulnerabilities in low-level TCP/IP software library developed by Treck
https://www.jsof-tech.com/ripple20/
https://www.jsof-tech.com/ripple20/
Ripple20 - Critical Vulnerabilities in low-level TCP/IP software library developed by Treck
CVE-2020-11896 to 2020-11914
9.8
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H/E:X/RL:X/RC:X
https://fortiguard.fortinet.com/psirt/FG-IR-20-104
Ripple20 - Critical Vulnerabilities in low-level TCP/IP software library developed by Treck
Reference>
https://www.jsof-tech.com/ripple20/
https://www.jsof-tech.com/ripple20/