Lucene search

GovTech CSGCVELIST:CVE-2022-0324

HistoryNov 14, 2022 - 4:08 p.m.

CVE-2022-0324 Buffer Overflow in Dhcp6relay in Software for Open Networking in the Cloud (SONiC)

2022-11-1416:08:34

CWE-120

GovTech CSG

www.cve.org

vulnerability

buffer overflow

dhcp6relay

sonic

docker

remote attacker

govtech singapore

CVSS3

8.1

Attack Vector

ADJACENT

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

NONE

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:H

AI Score

8.6

Confidence

High

EPSS

0.001

Percentile

50.0%

JSON

There is a vulnerability in DHCPv6 packet parsing code that could be explored by remote attacker to craft a packet that could cause buffer overflow in a memcpy call, leading to out-of-bounds memory write that would cause dhcp6relay to crash. Dhcp6relay is a critical process and could cause dhcp relay docker to shutdown.

Discovered by Eugene Lim of GovTech Singapore.

CNA Affected

[
  {
    "defaultStatus": "unaffected",
    "product": "Software for Open Networking in the Cloud (SONiC)",
    "repo": "https://github.com/sonic-net/sonic-buildimage",
    "vendor": "Linux Foundation",
    "versions": [
      {
        "status": "affected",
        "version": "202111"
      }
    ]
  }
]

References

github.com/sonic-net/sonic-buildimage/security/advisories/GHSA-m4qf-8rrq-mph9

govtech-csg.github.io/security-advisories/2022/11/14/CVE-2022-0324.html

CVSS3

8.1

Attack Vector

ADJACENT

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

NONE

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:H

AI Score

8.6

Confidence

High

EPSS

0.001

Percentile

50.0%

JSON

Related for CVELIST:CVE-2022-0324