Lucene search

[email protected]NVD:CVE-2023-39915

HistorySep 13, 2023 - 3:15 p.m.

CVE-2023-39915

2023-09-1315:15:07

CWE-228

[email protected]

web.nvd.nist.gov

routinator

vulnerability

parsing

7.5 High

CVSS3

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

HIGH

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

7.5 High

AI Score

Confidence

High

0.0005 Low

EPSS

Percentile

17.0%

JSON

NLnet Labs’ Routinator up to and including version 0.12.1 may crash when trying to parse certain malformed RPKI objects. This is due to insufficient input checking in the bcder library covered by CVE-2023-39914.

Affected configurations

NVD

Node

nlnetlabsroutinatorRange<0.12.2

References

nlnetlabs.nl/downloads/routinator/CVE-2023-39915.txt

7.5 High

CVSS3

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

HIGH

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

7.5 High

AI Score

Confidence

High

0.0005 Low

EPSS

Percentile

17.0%

JSON

Related for NVD:CVE-2023-39915

cve2 osv3 prion2 cvelist2 ubuntucve1 debiancve1 nvd1 github1 freebsd1 nessus1