IP-in-IP protocol specifies IP Encapsulation within IP standard (RFC 2003, STD 1) that decapsulate and route IP-in-IP traffic is vulnerable to spoofing, access-control bypass and other unexpected behavior due to the lack of validation to verify network packets before decapsulation and routing.
[
{
"vendor": "IETF",
"product": "RFC2003 - IP Encapsulation within IP",
"versions": [
{
"version": "STD 1",
"status": "affected"
}
]
}
]