CVSS3
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
HIGH
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
AI Score
Confidence
High
Cloudflare GoFlow vulnerable to a Denial of Service in the sflow packet handling package in github.com/cloudflare/goflow
github.com/cloudflare/goflow/commit/2b94619a6204443e3ca1769f4e459f9f57039c51
github.com/cloudflare/goflow/commit/c829ccd2c0aafdc9b886b20bf6f28095607f4998
github.com/cloudflare/goflow/releases/tag/v3.4.4
github.com/cloudflare/goflow/security/advisories/GHSA-9rpw-2h95-666c
nvd.nist.gov/vuln/detail/CVE-2022-2529