The Treck TCP/IP stack before 6.0.1.66 has an IPv6OverIPv4 tunneling Out-of-bounds Read.
Source: https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-11902
Reference (s):
- CERT-VN:VU#257161
- URL: https://www.kb.cert.org/vuls/id/257161
- CISCO:20200617 Multiple Vulnerabilities in Treck IP Stack Affecting Cisco Products: June 2020
- URL: https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-treck-ip-stack-JyBQ5GyC
- http://www.arubanetworks.com/assets/alert/ARUBA-PSA-2020-006.txt