IP-in-IP protocol specifies IP Encapsulation within IP standard (RFC 2003, STD 1) that decapsulate and route IP-in-IP traffic is vulnerable to spoofing, access-control bypass and other unexpected behavior due to the lack of validation to verify network packets before decapsulation and routing.
References
Link | Resource |
---|---|
https://datatracker.ietf.org/doc/html/rfc6169 | |
https://kb.cert.org/vuls/id/636397/ | Third Party Advisory US Government Resource |
https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-nxos-ipip-dos-kCT9X4 | Vendor Advisory |
https://www.digi.com/resources/security | Third Party Advisory |
https://www.kb.cert.org/vuls/id/636397 | Third Party Advisory US Government Resource |
Configurations
Configuration 1 (hide)
AND |
|
Configuration 2 (hide)
AND |
|
Configuration 3 (hide)
AND |
|
Configuration 4 (hide)
AND |
|
Configuration 5 (hide)
AND |
|
Configuration 6 (hide)
AND |
|
Configuration 7 (hide)
|
Configuration 8 (hide)
AND |
|
Configuration 9 (hide)
|
Configuration 10 (hide)
|
History
17 Jun 2024, 22:15
Type | Values Removed | Values Added |
---|---|---|
CWE | ||
References |
|
|
Summary | (en) IP-in-IP protocol specifies IP Encapsulation within IP standard (RFC 2003, STD 1) that decapsulate and route IP-in-IP traffic is vulnerable to spoofing, access-control bypass and other unexpected behavior due to the lack of validation to verify network packets before decapsulation and routing. |
Information
Published : 2020-06-02 09:15
Updated : 2024-06-17 22:15
NVD link : CVE-2020-10136
Mitre link : CVE-2020-10136
CVE.ORG link : CVE-2020-10136
JSON object : View
Products Affected
cisco
- nexus_9372px-e
- nexus_5548up
- nexus_9508
- nexus_92348gc-x
- nexus_9332c
- nexus_9516
- nexus_93108tc-ex
- nexus_3172
- nexus_93180lc-ex
- nexus_93240yc-fx2
- nexus_9396px
- nexus_5020
- nexus_9348gc-fxp
- nexus_9372px
- nexus_3048
- nexus_5624q
- nexus_3132q
- nexus_56128p
- nexus_93180yc-fx
- nexus_9364c
- nexus_7700
- ucs_manager
- nexus_93360yc-fx2
- nexus_6004
- nexus_9272q
- nexus_9396tx
- nexus_5596t
- nexus_1000ve
- nexus_92304qc
- nexus_9504
- nexus_9236c
- nexus_3064
- nexus_5648q
- nexus_93180yc-ex
- nexus_9332pq
- nexus_9336c-fx2
- unified_computing_system
- nexus_6001
- nexus_5696q
- nexus_9336pq_aci_spine
- nexus_5548p
- nexus_9372tx
- nexus_93108tc-fx
- ucs_6332
- ucs_6248up
- nexus_5010
- nexus_93216tc-fx2
- nexus_9372tx-e
- nexus_7000
- ucs_6296up
- nexus_3016
- ucs_6324
- nexus_1000v
- nexus_5672up
- nx-os
- nexus_93128tx
- nexus_3064-t
- ucs_6332-16up
- nexus_93120tx
- nexus_5596up
hp
- x3220nr_firmware
treck
- tcp\/ip
digi
- saros
CWE
CWE-290
Authentication Bypass by Spoofing