4.3 Medium
CVSS2
Attack Vector
NETWORK
Attack Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
PARTIAL
AV:N/AC:M/Au:N/C:N/I:N/A:P
0.007 Low
EPSS
Percentile
80.5%
Pacemaker 1.1.10, when remote Cluster Information Base (CIB) configuration or resource management is enabled, does not limit the duration of connections to the blocking sockets, which allows remote attackers to cause a denial of service (connection blocking).
OS | Version | Architecture | Package | Version | Filename |
---|---|---|---|---|---|
Debian | 12 | all | pacemaker | < 1.1.10-1 | pacemaker_1.1.10-1_all.deb |
Debian | 11 | all | pacemaker | < 1.1.10-1 | pacemaker_1.1.10-1_all.deb |
Debian | 999 | all | pacemaker | < 1.1.10-1 | pacemaker_1.1.10-1_all.deb |
Debian | 13 | all | pacemaker | < 1.1.10-1 | pacemaker_1.1.10-1_all.deb |