ROSA LABROSA-SA-2021-1855Advisory ROSA-SA-2021-1855
7.1 High
AI Score
Confidence
Low
7.8 High
CVSS2
Access Vector
NETWORK
Access Complexity
LOW
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
COMPLETE
AV:N/AC:L/Au:N/C:N/I:N/A:C
0.005 Low
EPSS
Percentile
75.7%
Software: iptables 1.4.21
OS: Cobalt 7.9
CVE-ID: CVE-2012-2663
CVE-Crit: CRITICAL
CVE-DESC: extension / libxt_tcp.c in iptables before 1.4.21 does not match TCP SYN + FIN packets in --syn rules, which may allow remote attackers to bypass intended firewall restrictions using crafted packets. NOTE: fix CVE-2012-6638 makes this issue less of an issue.
CVE-STATUS: default
CVE-REV: default
Related
7.1 High
AI Score
Confidence
Low
7.8 High
CVSS2
Access Vector
NETWORK
Access Complexity
LOW
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
COMPLETE
AV:N/AC:L/Au:N/C:N/I:N/A:C
0.005 Low
EPSS
Percentile
75.7%