142 matches found
CVE-2023-41909
An issue was discovered in FRRouting FRR through 9.0. bgpnlriparseflowspec in bgpd/bgpflowspec.c processes malformed requests with no attributes, leading to a NULL pointer dereference...
DEBIAN-CVE-2023-41909
An issue was discovered in FRRouting FRR through 9.0. bgpnlriparseflowspec in bgpd/bgpflowspec.c processes malformed requests with no attributes, leading to a NULL pointer dereference...
CVE-2023-41909
An issue was discovered in FRRouting FRR through 9.0. bgpnlriparseflowspec in bgpd/bgpflowspec.c processes malformed requests with no attributes, leading to a NULL pointer dereference...
UBUNTU-CVE-2023-41909
An issue was discovered in FRRouting FRR through 9.0. bgpnlriparseflowspec in bgpd/bgpflowspec.c processes malformed requests with no attributes, leading to a NULL pointer dereference...
FRRouting FRR Code Issue Vulnerability
FRRouting FRR is a suite of software that implements and manages various IPV4 and IPV6 routing protocols. A security vulnerability exists in FRRouting FRR, which stems from bgpnlriparseflowspec in bgpd/bgpflowspec.c, which handles special requests and causes null pointer dereferences...
PT-2023-9205 · Frrouting +9 · Frrouting +9
Name of the Vulnerable Software and Affected Versions: FRRouting versions through 9.0 Description: The issue is related to the processing of malformed requests without attributes in the bgpd/bgp flowspec.c file of FRRouting, a software for implementing network routing on Unix-like systems. This c...
CVE-2023-28964
An Improper Handling of Length Parameter Inconsistency vulnerability in the routing protocol daemon rpd of Juniper Networks Junos OS and Junos OS Evolved allows a network based, unauthenticated attacker to cause an RPD crash leading to a Denial of Service DoS. Continued receipt and processing of...
Input validation
An Improper Handling of Length Parameter Inconsistency vulnerability in the routing protocol daemon rpd of Juniper Networks Junos OS and Junos OS Evolved allows a network based, unauthenticated attacker to cause an RPD crash leading to a Denial of Service DoS. Continued receipt and processing of...
CVE-2023-28964 Junos OS and Junos OS Evolved: Malformed BGP flowspec update causes RPD crash
An Improper Handling of Length Parameter Inconsistency vulnerability in the routing protocol daemon rpd of Juniper Networks Junos OS and Junos OS Evolved allows a network based, unauthenticated attacker to cause an RPD crash leading to a Denial of Service DoS. Continued receipt and processing of...
CVE-2023-28964 Junos OS and Junos OS Evolved: Malformed BGP flowspec update causes RPD crash
An Improper Handling of Length Parameter Inconsistency vulnerability in the routing protocol daemon rpd of Juniper Networks Junos OS and Junos OS Evolved allows a network based, unauthenticated attacker to cause an RPD crash leading to a Denial of Service DoS. Continued receipt and processing of...
PT-2023-9203 · Frrouting +8 · Frrouting +8
Name of the Vulnerable Software and Affected Versions: FRRouting versions prior to 8.4.3 Description: The issue is related to the handling of incorrect requests without attributes in the bgpd/bgp flowspec.c file of FRRouting, a Unix-like system network routing implementation tool. This can be...
Juniper Junos OS FPC Crash (JSA11229)
The version of Junos OS installed on the remote host is affected by a vulnerability as referenced in the JSA11229 advisory. A Missing Release of Memory after Effective Lifetime vulnerability in the Packet Forwarding Engine PFE of Juniper Networks Junos OS on PTX Series allows an adjacent attacker...
CVE-2021-31367
A Missing Release of Memory after Effective Lifetime vulnerability in the Packet Forwarding Engine PFE of Juniper Networks Junos OS on PTX Series allows an adjacent attacker to cause a Denial of Service DoS by sending genuine BGP flowspec packets which cause an FPC heap memory leak. Once having r...
CVE-2021-31367
A Missing Release of Memory after Effective Lifetime vulnerability in the Packet Forwarding Engine PFE of Juniper Networks Junos OS on PTX Series allows an adjacent attacker to cause a Denial of Service DoS by sending genuine BGP flowspec packets which cause an FPC heap memory leak. Once having r...
CVE-2021-31367
CVE-2021-31367 is a memory leak CVE affecting Juniper Networks Junos OS on PTX Series. The issue is a Missing Release of Memory after Effective Lifetime in the Packet Forwarding Engine (PFE) that allows an adjacent attacker to trigger a Denial of Service (DoS) by sending legitimate BGP flowspec p...
CVE-2021-0236
Due to an improper check for unusual or exceptional conditions in Juniper Networks Junos OS and Junos OS Evolved the Routing Protocol Daemon RPD service, upon receipt of a specific matching BGP packet meeting a specific term in the flowspec configuration, crashes and restarts causing a Denial of...
CVE-2021-0236 Junos OS: A specific BGP VPNv6 flowspec message causes routing protocol daemon (rpd) process to crash with a core.
Due to an improper check for unusual or exceptional conditions in Juniper Networks Junos OS and Junos OS Evolved the Routing Protocol Daemon RPD service, upon receipt of a specific matching BGP packet meeting a specific term in the flowspec configuration, crashes and restarts causing a Denial of...
Juniper Junos OS DoS (JSA11101)
The version of Junos OS installed on the remote host is affected by a denial of service vulnerability. An unauthenticated remote attacker can send a valid BGP FlowSpec message thereby causing an unexpected change in the route advertisements within the BGP FlowSpec domain leading to disruptions in...
CVE-2021-0211
An improper check for unusual or exceptional conditions in Juniper Networks Junos OS and Junos OS Evolved Routing Protocol Daemon RPD service allows an attacker to send a valid BGP FlowSpec message thereby causing an unexpected change in the route advertisements within the BGP FlowSpec domain...
CVE-2021-0211
An improper check for unusual or exceptional conditions in Juniper Networks Junos OS and Junos OS Evolved Routing Protocol Daemon RPD service allows an attacker to send a valid BGP FlowSpec message thereby causing an unexpected change in the route advertisements within the BGP FlowSpec domain...