CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

838 matches found

RedhatCVE•added 2023/07/18 2:9 p.m.•20 views

CVE-2023-3748

A flaw was found in FRRouting when parsing certain babeld unicast hello messages that are intended to be ignored. This issue may allow an attacker to send specially crafted hello messages with the unicast flag set, the interval field set to 0, or any TLV that contains a sub-TLV with the Mandatory...

3.5CVSS6.2AI score0.00662EPSS

Exploits0References3

Tenable Nessus•added 2023/06/16 12:0 a.m.•29 views

SUSE SLES15: frr / frr-devel / libfrr0 / libfrr_pb0 / libfrrcares0 / etc (SUSE-SU-2023:2518-1)

The remote SUSE Linux SLES15 / SLESSAP15 host has packages installed that are affected by multiple vulnerabilities as referenced in the SUSE-SU-2023:2518-1 advisory. - CVE-2023-31489: Fixed a remote denial of service via a malformed BGP packet bsc1211248. - CVE-2023-31490: Fixed a remote denial o...

7.5CVSS6.8AI score0.02152EPSS

Exploits2References7

Tenable Nessus•added 2023/06/05 12:0 a.m.•22 views

Ubuntu 22.04 LTS / 23.04 : FRR vulnerabilities (USN-6136-1)

The remote Ubuntu 22.04 LTS / 23.04 host has packages installed that are affected by multiple vulnerabilities as referenced in the USN-6136-1 advisory. It was discovered that FRR incorrectly handled parsing certain BGP messages. A remote attacker could possibly use this issue to cause FRR to cras...

7.5CVSS6.8AI score0.02152EPSS

Exploits2References3

Tenable Nessus•added 2023/05/21 12:0 a.m.•44 views

AlmaLinux 8 : frr (ALSA-2023:2801)

The remote AlmaLinux 8 host has packages installed that are affected by a vulnerability as referenced in the ALSA-2023:2801 advisory. - An out-of-bounds read in the BGP daemon of FRRouting FRR before 8.4 may lead to a segmentation fault and denial of service. This occurs in bgpcapabilitymsgparse ...

9.1CVSS7.8AI score0.01534EPSS

Exploits1References2

Microsoft CVE•added 2023/05/17 7:0 a.m.•2 views

An issue found in Frrouting bgpd v.8.4.2 allows a remote attacker to cause a denial of service via the bgp_attr_psid_sub() function.

...

7.5CVSS7.5AI score0.02152EPSS

Exploits1

RedHat Linux•added 2023/05/16 8:47 a.m.•38 views

Moderate: Red Hat Security Advisory: frr security and bug fix update

An update for frr is now available for Red Hat Enterprise Linux 8. Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from the CV...

9.1CVSS7.2AI score0.01534EPSS

Exploits1References7

OSV•added 2023/05/16 12:0 a.m.•22 views

ALSA-2023:2801 Moderate: frr security and bug fix update

FRRouting is free software that manages TCP/IP based routing protocols. It supports BGP4, OSPFv2, OSPFv3, ISIS, RIP, RIPng, PIM, NHRP, PBR, EIGRP and BFD. Security Fixes: frr: out-of-bounds read in the BGP daemon may lead to information disclosure or denial of service CVE-2022-37032 For more...

9.1CVSS8.1AI score0.01534EPSS

Exploits1References4

Tenable Nessus•added 2023/05/16 12:0 a.m.•39 views

CentOS 8 : frr (CESA-2023:2801)

The remote CentOS Linux 8 host has packages installed that are affected by a vulnerability as referenced in the CESA-2023:2801 advisory. - An out-of-bounds read in the BGP daemon of FRRouting FRR before 8.4 may lead to a segmentation fault and denial of service. This occurs in bgpcapabilitymsgpar...

9.1CVSS7.8AI score0.01534EPSS

Exploits1References2

AlmaLinux•added 2023/05/16 12:0 a.m.•22 views

Moderate: frr security and bug fix update

9.1CVSS6.7AI score0.01534EPSS

Exploits1References4

Tenable Nessus•added 2023/05/15 12:0 a.m.•26 views

Oracle Linux 9 : frr (ELSA-2023-2202)

The remote Oracle Linux 9 host has packages installed that are affected by a vulnerability as referenced in the ELSA-2023-2202 advisory. 8.3.1-5 - Resolves: 2147522 - It is not possible to run FRR as a non-root user 8.3.1-4 - Resolves: 2144500 - AVC error when reloading FRR with provided reload...

9.1CVSS7.8AI score0.01534EPSS

Exploits1References2

Tenable Nessus•added 2023/05/14 12:0 a.m.•23 views

AlmaLinux 9 : frr (ALSA-2023:2202)

The remote AlmaLinux 9 host has packages installed that are affected by a vulnerability as referenced in the ALSA-2023:2202 advisory. - An out-of-bounds read in the BGP daemon of FRRouting FRR before 8.4 may lead to a segmentation fault and denial of service. This occurs in bgpcapabilitymsgparse ...

9.1CVSS7.8AI score0.01534EPSS

Exploits1References2