H1-893922 — Vulnetix

H1-893922 PUBLISHED CVSS 5.300000190734863 MEDIUM

IP-in-IP protocol routes arbitrary traffic by default - CVE-2020-10136

Risk Scores

CVSS 3.1

5.300000190734863

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L

Exploit Intelligence

Scanner and attack suite for hosts that forward unauthenticated packets via IPIP and GRE protocols. (CVE-2020-10136 CVE-2024-7595) (github-poc-repo)
Scanner and attack suite for hosts that forward unauthenticated packets via IPIP and GRE protocols. (CVE-2020-10136 CVE-2024-7595) (github-poc)
IP-in-IP protocol routes arbitrary traffic by default - CVE-2020-10136 (hackerone)
IP-in-IP protocol routes arbitrary traffic by default - CVE-2020-10136 (hackerone)

Timeline

Aug 15, 2021 CVE Published
Aug 15, 2021 PoC Published

References

IP-in-IP protocol routes arbitrary traffic by default - CVE-2020-10136 advisory

Open in Interactive Console →

$ Console Community · 100/wk Open console ›