Lucene search

MitreCVE-2022-46397

HistoryMar 28, 2023 - 10:15 p.m.

CVE-2022-46397

2023-03-2822:15:09

mitre

web.nvd.nist.gov

cve-2022-46397

fp.io vpp

vector packet processor

cbc mode

nvd

CVSS3

7.5

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

NONE

Availability Impact

NONE

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N

AI Score

7.5

Confidence

High

EPSS

0.002

Percentile

52.3%

JSON

FP.io VPP (Vector Packet Processor) 22.10, 22.06, 22.02, 21.10, 21.06, 21.01, 20.09, 20.05, 20.01, 19.08, and 19.04 Generates a Predictable IV with CBC Mode.

Affected configurations

Nvd

Node

lfprojectsvector_packet_processorMatch19.04

lfprojectsvector_packet_processorMatch19.08

lfprojectsvector_packet_processorMatch20.01

lfprojectsvector_packet_processorMatch20.05

lfprojectsvector_packet_processorMatch20.09

lfprojectsvector_packet_processorMatch21.01

lfprojectsvector_packet_processorMatch21.06

lfprojectsvector_packet_processorMatch21.10

lfprojectsvector_packet_processorMatch22.02

lfprojectsvector_packet_processorMatch22.06

lfprojectsvector_packet_processorMatch22.10

VendorProductVersionCPE
lfprojectsvector_packet_processor19.04cpe:2.3:a:lfprojects:vector_packet_processor:19.04:*:*:*:*:*:*:*
lfprojectsvector_packet_processor19.08cpe:2.3:a:lfprojects:vector_packet_processor:19.08:*:*:*:*:*:*:*
lfprojectsvector_packet_processor20.01cpe:2.3:a:lfprojects:vector_packet_processor:20.01:*:*:*:*:*:*:*
lfprojectsvector_packet_processor20.05cpe:2.3:a:lfprojects:vector_packet_processor:20.05:*:*:*:*:*:*:*
lfprojectsvector_packet_processor20.09cpe:2.3:a:lfprojects:vector_packet_processor:20.09:*:*:*:*:*:*:*
lfprojectsvector_packet_processor21.01cpe:2.3:a:lfprojects:vector_packet_processor:21.01:*:*:*:*:*:*:*
lfprojectsvector_packet_processor21.06cpe:2.3:a:lfprojects:vector_packet_processor:21.06:*:*:*:*:*:*:*
lfprojectsvector_packet_processor21.10cpe:2.3:a:lfprojects:vector_packet_processor:21.10:*:*:*:*:*:*:*
lfprojectsvector_packet_processor22.02cpe:2.3:a:lfprojects:vector_packet_processor:22.02:*:*:*:*:*:*:*
lfprojectsvector_packet_processor22.06cpe:2.3:a:lfprojects:vector_packet_processor:22.06:*:*:*:*:*:*:*

Vendor	Product	Version	CPE
lfprojects	vector_packet_processor	19.04	cpe:2.3:a:lfprojects:vector_packet_processor:19.04:::::::*
lfprojects	vector_packet_processor	19.08	cpe:2.3:a:lfprojects:vector_packet_processor:19.08:::::::*
lfprojects	vector_packet_processor	20.01	cpe:2.3:a:lfprojects:vector_packet_processor:20.01:::::::*
lfprojects	vector_packet_processor	20.05	cpe:2.3:a:lfprojects:vector_packet_processor:20.05:::::::*
lfprojects	vector_packet_processor	20.09	cpe:2.3:a:lfprojects:vector_packet_processor:20.09:::::::*
lfprojects	vector_packet_processor	21.01	cpe:2.3:a:lfprojects:vector_packet_processor:21.01:::::::*
lfprojects	vector_packet_processor	21.06	cpe:2.3:a:lfprojects:vector_packet_processor:21.06:::::::*
lfprojects	vector_packet_processor	21.10	cpe:2.3:a:lfprojects:vector_packet_processor:21.10:::::::*
lfprojects	vector_packet_processor	22.02	cpe:2.3:a:lfprojects:vector_packet_processor:22.02:::::::*
lfprojects	vector_packet_processor	22.06	cpe:2.3:a:lfprojects:vector_packet_processor:22.06:::::::*

Rows per page:

1-10 of 111

References

lists.fd.io/g/security-announce/message/2

s3-docs.fd.io/vpp/23.02/

CVSS3

7.5

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

NONE

Availability Impact

NONE

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N

AI Score

7.5

Confidence

High

EPSS

0.002

Percentile

52.3%

JSON

Related for CVE-2022-46397