Lucene search
CloudflareCVELIST:CVE-2021-3911HistoryNov 11, 2021 - 9:45 p.m.
CVE-2021-3911 Misconfigured IP address field in ROA leads to OctoRPKI crash
2021-11-1121:45:22
CWE-20
cloudflare
www.cve.org
7
cve-2021-3911
misconfigured
ip address
roa
octorpki
crash
CVSS3
4.2
Attack Vector
NETWORK
Attack Complexity
HIGH
Privileges Required
HIGH
User Interaction
REQUIRED
Scope
UNCHANGED
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
HIGH
CVSS:3.1/AV:N/AC:H/PR:H/UI:R/S:U/C:N/I:N/A:H
AI Score
7.3
Confidence
High
EPSS
0.001
Percentile
44.1%
If the ROA that a repository returns contains too many bits for the IP address then OctoRPKI will crash.
CNA Affected
[
{
"product": "octorpki",
"vendor": "Cloudflare",
"versions": [
{
"lessThan": "1.4.0",
"status": "affected",
"version": "unspecified",
"versionType": "custom"
}
]
}
]Related
ubuntucve
ubuntucve
CVE-2021-3911
2021-11-11 00:00:00
cve
cve
CVE-2021-3911
2021-11-11 22:15:08
debiancve
debiancve
CVE-2021-3911
2021-11-11 22:15:08
prion
prion
Input validation
2021-11-11 22:15:00
osv
osv
CVE-2021-3911
2021-11-11 22:15:08
Misconfigured IP address field in ROA leads to OctoRPKI crash
2021-11-10 19:56:04
Panic on misconfigured IP address in github.com/cloudflare/cfrpki
2022-07-15 23:07:41
nvd
nvd
CVE-2021-3911
2021-11-11 22:15:08
github
github
Misconfigured IP address field in ROA leads to OctoRPKI crash
2021-11-10 19:56:04
veracode
veracode
Denial Of Service (DoS)
2021-11-11 08:43:38
openvas
openvas
Debian: Security Advisory (DSA-5041-1)
2022-01-12 00:00:00
nessus
nessus
Debian DSA-5041-1 : cfrpki - security update
2022-01-12 00:00:00
debian
debian
[SECURITY] [DSA 5041-1] cfrpki security update
2022-01-11 21:54:05
CVSS3
4.2
Attack Vector
NETWORK
Attack Complexity
HIGH
Privileges Required
HIGH
User Interaction
REQUIRED
Scope
UNCHANGED
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
HIGH
CVSS:3.1/AV:N/AC:H/PR:H/UI:R/S:U/C:N/I:N/A:H
AI Score
7.3
Confidence
High
EPSS
0.001
Percentile
44.1%
Related for CVELIST:CVE-2021-3911