Lucene search

K

9119a7d8-5eab-497f-8521-727c672e3725CVE-2023-52557

HistoryMar 01, 2024 - 5:15 p.m.

CVE-2023-52557

2024-03-0117:15:07

CWE-131

9119a7d8-5eab-497f-8521-727c672e3725

web.nvd.nist.gov

43

openbsd

7.3

l2tp

crash

avp

nvd

cve-2023-52557

7.4 High

AI Score

Confidence

Low

0.0004 Low

EPSS

Percentile

8.7%

In OpenBSD 7.3 before errata 016, npppd(8) could crash by a l2tp message which has an AVP (Attribute-Value Pair) with wrong length.

References

ftp.openbsd.org/pub/OpenBSD/patches/7.3/common/016_npppd.patch.sig

github.com/openbsd/src/commit/abf3a29384c582c807a621e7fc6e7c68d0cafe9b

7.4 High

AI Score

Confidence

Low

0.0004 Low

EPSS

Percentile

8.7%

Related for CVE-2023-52557

cvelist1 prion1 osv1