Publication Date: 2020-07-07
Mist products are not impacted by the Ripple20 vulnerability – related to the use of the Treck embedded IP stack as per CVE-2020-11901. Exploitation of these vulnerabilities through an invalid DNS response could result in denial of service, information disclosure, or remote code execution.
None of the Mist products are affected by this vulnerability as we do not use the Treck stack.
For more information, please see: https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-11901