Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
nvd[email protected]NVD:CVE-2023-30312
HistoryMay 28, 2024 - 10:15 p.m.

CVE-2023-30312

2024-05-2822:15:11
[email protected]
web.nvd.nist.gov
4
nvd
openwrt
router
tcp session hijack
denial of service

AI Score

6.5

Confidence

High

EPSS

0

Percentile

15.5%

JSON

An issue discovered in OpenWrt 18.06, 19.07, 21.02, 22.03, and beyond allows off-path attackers to hijack TCP sessions, which could lead to a denial of service, impersonating the client to the server (e.g., for access to files over FTP), and impersonating the server to the client (e.g., to deliver false information from a finance website). This occurs because nf_conntrack_tcp_no_window_check is true by default.

Related

cvelist 1
cve 1
vulnrichment 1
cvelist
cvelist
CVE-2023-30312
2024-05-28 00:00:00
cve
cve
CVE-2023-30312
2024-05-28 22:15:11
vulnrichment
vulnrichment
CVE-2023-30312
2024-05-28 00:00:00

AI Score

6.5

Confidence

High

EPSS

0

Percentile

15.5%

JSON
Related for NVD:CVE-2023-30312
cvelist1cve1vulnrichment1