Lucene search
Debian Security Bug TrackerDEBIANCVE:CVE-2022-36440HistoryApr 03, 2023 - 4:15 p.m.
CVE-2022-36440
2023-04-0316:15:07
Debian Security Bug Tracker
security-tracker.debian.org
11
cve-2022-36440
bgp
dos
frrouting
CVSS3
7.5
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
HIGH
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
EPSS
0.003
Percentile
69.6%
A reachable assertion was found in Frrouting frr-bgpd 8.3.0 in the peek_for_as4_capability function. Attackers can maliciously construct BGP open packets and send them to BGP peers running frr-bgpd, resulting in DoS.
| OS | Version | Architecture | Package | Version | Filename |
|---|---|---|---|---|---|
| Debian | 12 | all | frr | < 8.4.1-1 | frr_8.4.1-1_all.deb |
| Debian | 11 | all | frr | < 7.5.1-1.1+deb11u2 | frr_7.5.1-1.1+deb11u2_all.deb |
| Debian | 999 | all | frr | < 8.4.1-1 | frr_8.4.1-1_all.deb |
| Debian | 13 | all | frr | < 8.4.1-1 | frr_8.4.1-1_all.deb |
Related
nessus
nessus
Fedora 37 : frr (2023-2cb0f34efe)
2023-04-21 00:00:00
Fedora 36 : frr (2023-14ec79ae02)
2023-04-21 00:00:00
Fedora 38 : frr (2023-77d00facd0)
2023-04-21 00:00:00
openvas
openvas
Fedora: Security Advisory for frr (FEDORA-2023-2cb0f34efe)
2023-04-23 00:00:00
Fedora: Security Advisory for frr (FEDORA-2023-77d00facd0)
2023-04-23 00:00:00
Fedora: Security Advisory for frr (FEDORA-2023-14ec79ae02)
2023-04-23 00:00:00
prion
prion
Authentication flaw
2023-04-03 16:15:00
osv
osv
CVE-2022-36440
2023-04-03 16:15:07
Moderate: frr security and bug fix update
2023-11-07 00:00:00
frr - security update
2023-09-19 00:00:00
redhatcve
redhatcve
CVE-2022-36440
2023-04-04 19:43:04
fedora
fedora
[SECURITY] Fedora 36 Update: frr-8.5-1.fc36
2023-04-21 01:25:22
[SECURITY] Fedora 38 Update: frr-8.5-1.fc38
2023-04-21 02:09:50
[SECURITY] Fedora 37 Update: frr-8.5-1.fc37
2023-04-21 02:11:27
veracode
veracode
Denial Of Service (DoS)
2023-04-30 10:30:19
ubuntucve
ubuntucve
CVE-2022-36440
2023-04-03 00:00:00
cvelist
cvelist
CVE-2022-36440
2023-04-03 00:00:00
cve
cve
CVE-2022-36440
2023-04-03 16:15:07
nvd
nvd
CVE-2022-36440
2023-04-03 16:15:07
redhat
redhat
(RHSA-2023:6434) Moderate: frr security and bug fix update
2023-11-07 06:05:29
oraclelinux
oraclelinux
frr security and bug fix update
2023-11-11 00:00:00
almalinux
almalinux
Moderate: frr security and bug fix update
2023-11-07 00:00:00
redos
redos
ROS-20240403-09
2024-04-03 00:00:00
debian
debian
[SECURITY] [DSA 5495-1] frr security update
2023-09-11 07:14:35
[SECURITY] [DLA 3573-1] frr security update
2023-09-19 19:41:22
CVSS3
7.5
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
HIGH
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
EPSS
0.003
Percentile
69.6%
Related for DEBIANCVE:CVE-2022-36440