CVE-2023-6534 TCP spoofing vulnerability in pf(4)

🗓️ 13 Dec 2023 08:12:14Reported by freebsdType

TCP spoofing vuln. in pf(4) ver. FreeBSD 14.0-RELEASE before 14-RELEASE-p2, 13.2-RELEASE before 13.2-RELEASE-p7, 12.4-RELEASE before 12.4-RELEASE-p

Reporter	Title	Published	Views	Family All 11
FreeBSD	FreeBSD -- TCP spoofing vulnerability in pf(4)	5 Dec 202300:00	–	freebsd
BDU FSTEC	The vulnerability of the packet filter component in FreeBSD operating systems allows a hacker to trigger a service failure.	25 Dec 202300:00	–	bdu_fstec
Circl	CVE-2023-6534	30 Dec 202309:06	–	circl
CNNVD	FreeBSD Security Vulnerabilities	13 Dec 202300:00	–	cnnvd
CVE	CVE-2023-6534	13 Dec 202308:12	–	cve
FreeBSD Advisory	FreeBSD-SA-23:17.pf	5 Dec 202300:00	–	freebsd_advisory
Tenable Nessus	FreeBSD : FreeBSD -- TCP spoofing vulnerability in pf(4) (9cbbc506-93c1-11ee-8e38-002590c1f29c)	5 Dec 202300:00	–	nessus
NVD	CVE-2023-6534	13 Dec 202309:15	–	nvd
OSV	CVE-2023-6534	13 Dec 202309:15	–	osv
Prion	Code injection	13 Dec 202309:15	–	prion

[
  {
    "defaultStatus": "unknown",
    "modules": [
      "pf"
    ],
    "product": "FreeBSD",
    "vendor": "FreeBSD",
    "versions": [
      {
        "lessThan": "p2",
        "status": "affected",
        "version": "14.0-RELEASE",
        "versionType": "release"
      },
      {
        "lessThan": "p7",
        "status": "affected",
        "version": "13.2-RELEASE",
        "versionType": "release"
      },
      {
        "lessThan": "p9",
        "status": "affected",
        "version": "12.4-RELEASE",
        "versionType": "release"
      }
    ]
  }
]

Source	Link
security	www.security.freebsd.org/advisories/FreeBSD-SA-23:17.pf.asc
security	www.security.netapp.com/advisory/ntap-20240112-0007/

12 Jan 2024 14:06Current

7.8High risk

Vulners AI Score7.8

EPSS0.00255