Recent updates to this article
| Date |
Update |
| June 24, 2020 |
Added a link to SB10321 - McAfee Security Bulletin - Enterprise Appliance updates addressing two vulnerabilities (CVE-2020-0545 and CVE-2020-0586). |
| June 23, 2020 |
Added a link to the McAfee blog about Ripple20. |
On June 16, 2020, the Department of Homeland Security and CISA ICS-CERT issued a critical security advisory warning that covers multiple newly discovered vulnerabilities.
The vulnerabilities affect internet-connected devices manufactured by multiple vendors. This set of vulnerabilities, known collectively as "Ripple20," is a set of 19 vulnerabilities that reside in a low-level TCP/IP software library developed by
Treck.
McAfee software is not impacted. For information about how McAfee hardware appliances are affected, see
SB10321 - McAfee Security Bulletin - Enterprise Appliance updates addressing two vulnerabilities (CVE-2020-0545 and CVE-2020-0586). For more information about Ripple20 and mitigation best practices, see the McAfee blog at:
https://www.mcafee.com/blogs/other-blogs/mcafee-labs/ripple20-vulnerability-mitigation-best-practices/.
