Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

838 matches found

OSV
OSVadded 2024/04/07 9:15 p.m.4 views

UBUNTU-CVE-2024-31948

In FRRouting FRR through 9.1, an attacker using a malformed Prefix SID attribute in a BGP UPDATE packet can cause the bgpd daemon to crash...

6.5CVSS7.3AI score0.00825EPSS
Exploits0References4
Positive Technologies
Positive Technologiesadded 2024/04/07 12:0 a.m.2 views

PT-2024-6033 · Frrouting +2 · Frrouting +2

Name of the Vulnerable Software and Affected Versions: FRRouting versions through 9.1 Description: The issue is related to the Dynamic Capability Handler component in FRRouting, which can lead to an infinite loop when receiving a MP/GR capability as a dynamic capability due to malformed data...

9.8CVSS6.8AI score0.01923EPSS
Exploits6References59
Vulnrichment
Vulnrichmentadded 2024/04/07 12:0 a.m.15 views

CVE-2024-31948

In FRRouting FRR through 9.1, an attacker using a malformed Prefix SID attribute in a BGP UPDATE packet can cause the bgpd daemon to crash...

6.6AI score0.00825EPSS
Exploits0References3
CNNVD
CNNVDadded 2024/04/07 12:0 a.m.4 views

FRRouting 安全漏洞

FRRouting is an open source network routing software suite from the FRRouting Project that runs on Unix-like platforms. A security vulnerability exists in FRRouting FRR versions 9.1 and earlier, which originates from a vulnerability that allows an attacker to cause the bgpd daemon to crash by usi...

6.5CVSS6.9AI score0.00825EPSS
Exploits0References5
CNNVD
CNNVDadded 2024/04/07 12:0 a.m.3 views

FRRouting 安全漏洞

FRRouting is an open source network routing software suite from the FRRouting Project that runs on Unix-like platforms. A security vulnerability exists in FRRouting FRR versions 9.1 and earlier, which stems from incorrectly formatted data that can cause the pointer to fail to advance, resulting i...

6.5CVSS6.6AI score0.007EPSS
Exploits0References4
Vulnrichment
Vulnrichmentadded 2024/04/07 12:0 a.m.24 views

CVE-2024-31949

In FRRouting FRR through 9.1, an infinite loop can occur when receiving a MP/GR capability as a dynamic capability because malformed data results in a pointer not advancing...

6.7AI score0.007EPSS
Exploits0References3
FreeBSD
FreeBSDadded 2024/04/07 12:0 a.m.23 views

frr - Multiple vulnerabilities

[email protected] reports: In FRRouting FRR through 9.1, there are multiples vulnerabilities. CVE-2024-31950: buffer overflow and daemon crash in ospfteparseri for OSPF LSA packets CVE-2024-31951: buffer overflow and daemon crash in ospfteparseextlink for OSPF LSA packets...

6.5CVSS7.9AI score0.0054EPSS
Exploits0References1
Debian CVE
Debian CVEadded 2024/04/07 12:0 a.m.32 views

CVE-2024-31948

In FRRouting FRR through 9.1, an attacker using a malformed Prefix SID attribute in a BGP UPDATE packet can cause the bgpd daemon to crash...

6.5CVSS6.4AI score0.00825EPSS
Exploits0
Debian CVE
Debian CVEadded 2024/04/07 12:0 a.m.23 views

CVE-2024-31950

In FRRouting FRR through 9.1, there can be a buffer overflow and daemon crash in ospfteparseri for OSPF LSA packets during an attempt to read Segment Routing subTLVs their size is not validated...

6.5CVSS6.7AI score0.00509EPSS
Exploits0
Debian CVE
Debian CVEadded 2024/04/07 12:0 a.m.24 views

CVE-2024-31949

In FRRouting FRR through 9.1, an infinite loop can occur when receiving a MP/GR capability as a dynamic capability because malformed data results in a pointer not advancing...

6.5CVSS6.3AI score0.007EPSS
Exploits0
Debian CVE
Debian CVEadded 2024/04/07 12:0 a.m.21 views

CVE-2024-31951

In the Opaque LSA Extended Link parser in FRRouting FRR through 9.1, there can be a buffer overflow and daemon crash in ospfteparseextlink for OSPF LSA packets during an attempt to read Segment Routing Adjacency SID subTLVs lengths are not validated...

6.5CVSS6.7AI score0.0054EPSS
Exploits0
Cvelist
Cvelistadded 2024/04/07 12:0 a.m.17 views

CVE-2024-31948

In FRRouting FRR through 9.1, an attacker using a malformed Prefix SID attribute in a BGP UPDATE packet can cause the bgpd daemon to crash...

9.5AI score0.00825EPSS
Exploits0References3
Cvelist
Cvelistadded 2024/04/07 12:0 a.m.20 views

CVE-2024-31949

In FRRouting FRR through 9.1, an infinite loop can occur when receiving a MP/GR capability as a dynamic capability because malformed data results in a pointer not advancing...

9.6AI score0.007EPSS
Exploits0References3
CVE
CVEadded 2024/04/07 12:0 a.m.93 views

CVE-2024-31949

CVE-2024-31949 — FRRouting (FRR) through 9.1 Description (from connected docs): An infinite loop can occur when FRR receives a MP/GR capability as a dynamic capability, caused by malformed data that prevents a pointer from advancing. This is within FRR’s BGP handling, affecting FRR up to version ...

6.5CVSS9.2AI score0.007EPSS
Exploits0References4Affected Software1
CVE
CVEadded 2024/04/07 12:0 a.m.107 views

CVE-2024-31948

CVE-2024-31948 affects FRRouting (FRR) up to 9.1, where a malformed Prefix SID attribute in a BGP UPDATE can crash the bgpd daemon. The issue is confirmed across multiple advisories referencing FRR fixes in FRR 8.5.6 and later (e.g., SUSE-SU-2024:4090-1). Impact is a denial of service (bgpd crash...

6.5CVSS6.2AI score0.00825EPSS
Exploits0References4Affected Software1
Cvelist
Cvelistadded 2024/04/07 12:0 a.m.23 views

CVE-2024-31951

In the Opaque LSA Extended Link parser in FRRouting FRR through 9.1, there can be a buffer overflow and daemon crash in ospfteparseextlink for OSPF LSA packets during an attempt to read Segment Routing Adjacency SID subTLVs lengths are not validated...

7AI score0.0054EPSS
Exploits0References2
Cvelist
Cvelistadded 2024/04/07 12:0 a.m.19 views

CVE-2024-31950

In FRRouting FRR through 9.1, there can be a buffer overflow and daemon crash in ospfteparseri for OSPF LSA packets during an attempt to read Segment Routing subTLVs their size is not validated...

7.1AI score0.00509EPSS
Exploits0References2
Vulnrichment
Vulnrichmentadded 2024/04/07 12:0 a.m.16 views

CVE-2024-31951

In the Opaque LSA Extended Link parser in FRRouting FRR through 9.1, there can be a buffer overflow and daemon crash in ospfteparseextlink for OSPF LSA packets during an attempt to read Segment Routing Adjacency SID subTLVs lengths are not validated...

7.1AI score0.0054EPSS
Exploits0References2
CVE
CVEadded 2024/04/07 12:0 a.m.84 views

CVE-2024-31950

CVE-2024-31950 affects FRRouting (FRR) up to version 9.1, causing a buffer overflow and daemon crash in ospf_te_parse_ri when parsing OSPF LSA Segment Routing subTLVs due to unvalidated sizes. Exploitation involves network-proximate access to FRR’s OSPF processing and can lead to a crash/DoS. Pub...

6.5CVSS6.8AI score0.00509EPSS
Exploits0References2Affected Software1
CNNVD
CNNVDadded 2024/04/07 12:0 a.m.6 views

FRRouting 安全漏洞

FRRouting is an open source network routing software suite from the FRRouting Project that runs on Unix-like platforms. A security vulnerability exists in FRRouting FRR versions 9.1 and earlier, which stems from a buffer overflow vulnerability in ospftepasseri of ospf LSA packets. An attacker cou...

6.5CVSS6.9AI score0.00509EPSS
Exploits0References4
Rows per page
Query Builder