Lucene search

K
freebsdFreeBSD802961EB-7A89-11EF-BDD7-A0423F48A938
HistoryAug 19, 2024 - 12:00 a.m.

frr - BGP

2024-08-1900:00:00
vuxml.freebsd.org
8
frrouting bgp tlv unix

CVSS3

7.5

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

HIGH

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

AI Score

6.8

Confidence

Low

[email protected] reports:

An issue was discovered in FRRouting (FRR). bgp_attr_encap
in bgpd/bgp_attr.c does not check the actual remaining stream length
before taking the TLV value.

Affected configurations

Vulners
Node
linuxfoundationfree_range_routingRange<9.1.2
OR
linuxfoundationfree_range_routingRange<8.5.6
VendorProductVersionCPE
linuxfoundationfree_range_routing*cpe:2.3:a:linuxfoundation:free_range_routing:*:*:*:*:*:*:*:*

CVSS3

7.5

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

HIGH

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

AI Score

6.8

Confidence

Low