← Back to CVEs
CVE-2020-27338
MEDIUM5.9
Description
An issue was discovered in Treck IPv6 before 6.0.1.68. Improper Input Validation in the DHCPv6 client component allows an unauthenticated remote attacker to cause an Out of Bounds Read, and possibly a Denial of Service via adjacent network access.
CVE Details
CVSS v3.1 Score5.9
SeverityMEDIUM
CVSS VectorCVSS:3.1/AV:A/AC:H/PR:N/UI:N/S:U/C:L/I:N/A:H
Attack VectorADJACENT_NETWORK
ComplexityHIGH
Privileges RequiredNONE
User InteractionNONE
Published12/22/2020
Last Modified11/21/2024
Sourcenvd
Honeypot Sightings0
Affected Products
treck:ipv6
Weaknesses (CWE)
CWE-20CWE-125
References
https://security.netapp.com/advisory/ntap-20210201-0003/(cve@mitre.org)
https://treck.com/vulnerability-response-information/(cve@mitre.org)
https://security.netapp.com/advisory/ntap-20210201-0003/(af854a3a-2127-422b-91ae-364da2661108)
https://treck.com/vulnerability-response-information/(af854a3a-2127-422b-91ae-364da2661108)
IOC Correlations
No correlations recorded
This product uses data from the NVD API but is not endorsed or certified by the NVD.