Known Vulnerabilities for products from Treck

Listed below are 20 of the newest known vulnerabilities associated with the vendor "Treck".

These CVEs are retrieved based on exact matches on listed vendor information (CPE data) as well as a keyword search to ensure the newest vulnerabilities with no officially listed vendor information are still displayed.

Data on known vulnerable products is also displayed based on information from known CPEs, each product links to its respective vulnerability page.

Known Vulnerabilities

CVE Shortened Description Severity Publish Date Last Modified
CVE-2020-27338 json An issue was discovered in Treck IPv6 before 6.0.1.68. Improper Input Validation in the DHCPv6 client component allows an una... 7.1 - HIGH 2020-12-22 2021-07-21
CVE-2020-27337 json An issue was discovered in Treck IPv6 before 6.0.1.68. Improper Input Validation in the IPv6 component allows an unauthentica... 7.3 - HIGH 2020-12-22 2021-07-21
CVE-2020-27336 json An issue was discovered in Treck IPv6 before 6.0.1.68. Improper input validation in the IPv6 component when handling a packet... 5.3 - MEDIUM 2020-12-22 2021-07-21
CVE-2020-25066 json A heap-based buffer overflow in the Treck HTTP Server component before 6.0.1.68 allows remote attackers to cause a denial of ... 9.8 - CRITICAL 2020-12-22 2021-03-26
CVE-2020-11914 json The Treck TCP/IP stack before 6.0.1.66 has an ARP Out-of-bounds Read. 4.3 - MEDIUM 2020-06-17 2020-07-22
CVE-2020-11913 json The Treck TCP/IP stack before 6.0.1.66 has an IPv6 Out-of-bounds Read. 5.3 - MEDIUM 2020-06-17 2020-07-22
CVE-2020-11912 json The Treck TCP/IP stack before 6.0.1.66 has a TCP Out-of-bounds Read. 5.3 - MEDIUM 2020-06-17 2020-07-22
CVE-2020-11911 json The Treck TCP/IP stack before 6.0.1.66 has Improper ICMPv4 Access Control. 5.3 - MEDIUM 2020-06-17 2021-07-21
CVE-2020-11910 json The Treck TCP/IP stack before 6.0.1.66 has an ICMPv4 Out-of-bounds Read. 5.3 - MEDIUM 2020-06-17 2020-07-22
CVE-2020-11909 json The Treck TCP/IP stack before 6.0.1.66 has an IPv4 Integer Underflow. 5.3 - MEDIUM 2020-06-17 2020-07-22
CVE-2020-11908 json The Treck TCP/IP stack before 4.7.1.27 mishandles '\0' termination in DHCP. 4.3 - MEDIUM 2020-06-17 2020-07-22
CVE-2020-11907 json The Treck TCP/IP stack before 6.0.1.66 improperly handles a Length Parameter Inconsistency in TCP. 6.3 - MEDIUM 2020-06-17 2020-07-22
CVE-2020-11906 json The Treck TCP/IP stack before 6.0.1.66 has an Ethernet Link Layer Integer Underflow. 6.3 - MEDIUM 2020-06-17 2020-07-22
CVE-2020-11905 json The Treck TCP/IP stack before 6.0.1.66 has a DHCPv6 Out-of-bounds Read. 6.5 - MEDIUM 2020-06-17 2020-07-22
CVE-2020-11904 json The Treck TCP/IP stack before 6.0.1.66 has an Integer Overflow during Memory Allocation that causes an Out-of-Bounds Write. 7.3 - HIGH 2020-06-17 2020-07-22
CVE-2020-11903 json The Treck TCP/IP stack before 6.0.1.28 has a DHCP Out-of-bounds Read. 6.5 - MEDIUM 2020-06-17 2020-07-22
CVE-2020-11902 json The Treck TCP/IP stack before 6.0.1.66 has an IPv6OverIPv4 tunneling Out-of-bounds Read. 7.3 - HIGH 2020-06-17 2020-07-22
CVE-2020-11901 json The Treck TCP/IP stack before 6.0.1.66 allows Remote Code execution via a single invalid DNS response. 9 - CRITICAL 2020-06-17 2021-07-21
CVE-2020-11900 json The Treck TCP/IP stack before 6.0.1.41 has an IPv4 tunneling Double Free. 8.2 - HIGH 2020-06-17 2020-07-22
CVE-2020-11899 json The Treck TCP/IP stack before 6.0.1.66 has an IPv6 Out-of-bounds Read. 5.4 - MEDIUM 2020-06-17 2022-07-10

Known software with vulnerabilities from Treck

Type Vendor Product Version
ApplicationTreckIpv66.0.1.68
ApplicationTreckTcp/ip4.7.1.27
© CVE.report 2026 |

Use of this information constitutes acceptance for use in an AS IS condition. There are NO warranties, implied or otherwise, with regard to this information or its use. Any use of this information is at the user's risk. It is the responsibility of user to evaluate the accuracy, completeness or usefulness of any information, opinion, advice or other content. EACH USER WILL BE SOLELY RESPONSIBLE FOR ANY consequences of his or her direct or indirect use of this web site. ALL WARRANTIES OF ANY KIND ARE EXPRESSLY DISCLAIMED. This site will NOT BE LIABLE FOR ANY DIRECT, INDIRECT or any other kind of loss.

CVE, CWE, and OVAL are registred trademarks of The MITRE Corporation and the authoritative source of CVE content is MITRE's CVE web site. This site includes MITRE data granted under the following license.

Free CVE JSON API cve.report/api

CVE.report and Source URL Uptime Status status.cve.report