Ripple20 Explained

Ripple20 is a set of vulnerabilities discovered in 2020 in a software library that implemented a TCP/IP stack. The security concerns were discovered by JSOF, which named the collective vulnerabilities for how one company's code became embedded into numerous products. The software library was created around 1997 and had been implemented by many manufacturers of online devices.

Description

Ripple20 is a set of 19 vulnerabilities discovered in 2020 in a software library developed by the Cincinnati-based^[1] company Treck Inc., which implemented a TCP/IP stack.^{[2] [3] [4]}

History

The first release of Treck's library was around 1997.^[1] Treck had also worked with Elmic Systems, which created a fork of the library when the companies ended their collaboration.^[5] In September 2019, JSOF researchers analyzed a device containing code from the library and discovered it had vulnerabilities. Further analysis determined that the code originated from Treck's library, which had been widely implemented by numerous manufacturers.^[5] The disclosure of the vulnerabilities was made in June 2020.^{[6] [7] [8] [9]} Ripple20 was chosen as the name for the set of vulnerabilities based on the disclosure year and the idea that the problems "rippled" through the supply chain from one company.^{[2] [10]} It is difficult to identify all affected devices, because manufacturers may not realize that the library was used in one of their components.^[11]

External links

• Web site: Vulnerability Response Information. treck.com.

Notes and References

1. Web site: Catalin . Cimpanu . Ripple20 vulnerabilities will haunt the IoT landscape for years to come . ZDNet . 2018-08-21 . 2020-07-02.
2. Web site: Andy . Greenberg . Ripple20 Bugs Put Hundreds of Millions of IoT Devices at Risk . WIRED . 2020-06-16 . 2020-07-02.
3. Web site: Coble . Sarah . 2020-09-10 . Ripple20 a Major Threat . 2024-06-20 . Infosecurity Magazine . en-gb.
4. Web site: 2020-09-15 . How to mitigate Ripple20 vulnerability risks . 2024-06-20 . CybersecAsia . en-US.
5. Web site: disclosure. jsof-tech.com. 2020-07-02.
6. Web site: Ripple20 Threatens Increasingly Connected Medical . Darkreading.com . 2020-07-02.
7. Web site: This Week In Security: Bitdefender, Ripple20, Starbucks, And Pwned Passwords . Hackaday . 2020-06-26 . 2020-07-02.
8. Web site: List of Ripple20 vulnerability advisories, patches, and updates . Bleepingcomputer.com . 2020-06-25 . 2020-07-02.
9. Web site: Multiple Vulnerabilities in Treck IP Stack Affecting Cisco Products: June 2020 . Tools.cisco.com . 2020-06-16 . 2020-07-02.
10. Web site: Overview. jsof-tech.com. 2020-07-02.
11. Web site: Jon . Gold . Ripple20 TCP/IP flaws can be patched but still threaten IoT devices . Network World . 2020-07-02.