Lucene search
K

14 matches found

UbuntuCve
UbuntuCve
added 2025/10/27 8:15 p.m.5 views

CVE-2025-61102

FRRouting/frr from v4.0 through v10.4.1 was discovered to contain a NULL pointer dereference via the showvtyextlinkadjsid function at ospfext.c. This vulnerability allows attackers to cause a Denial of Service DoS via a crafted OSPF packet...

7.5CVSS5.9AI score0.00457EPSS
Exploits1References3
UbuntuCve
UbuntuCve
added 2025/10/27 8:15 p.m.4 views

CVE-2025-61105

FRRouting/frr from v4.0 through v10.4.1 was discovered to contain a NULL pointer dereference via the showvtylinkinfo function at ospfext.c. This vulnerability allows attackers to cause a Denial of Service DoS via a crafted OSPF packet...

7.5CVSS5.9AI score0.00457EPSS
Exploits1References3
UbuntuCve
UbuntuCve
added 2025/10/27 8:15 p.m.5 views

CVE-2025-61101

FRRouting/frr from v4.0 through v10.4.1 was discovered to contain a NULL pointer dereference via the showvtyextlinkrmtitfaddr function at ospfext.c. This vulnerability allows attackers to cause a Denial of Service DoS via a crafted OSPF packet...

7.5CVSS5.9AI score0.00457EPSS
Exploits1References3
UbuntuCve
UbuntuCve
added 2025/10/27 7:16 p.m.4 views

CVE-2025-61100

FRRouting/frr from v2.0 through v10.4.1 was discovered to contain a NULL pointer dereference via the ospfopaquelsadump function at ospfopaque.c. This vulnerability allows attackers to cause a Denial of Service DoS under specific malformed LSA conditions...

7.5CVSS5.9AI score0.00457EPSS
Exploits1References3
UbuntuCve
UbuntuCve
added 2025/10/27 7:16 p.m.5 views

CVE-2025-61099

FRRouting/frr from v2.0 through v10.4.1 was discovered to contain a NULL pointer dereference via the opaqueinfodetail function at ospfopaque.c. This vulnerability allows attackers to cause a Denial of Service DoS via a crafted LS Update packet...

7.5CVSS5.9AI score0.00457EPSS
Exploits1References3
UbuntuCve
UbuntuCve
added 2025/01/06 11:15 p.m.10 views

CVE-2024-55553

In FRRouting FRR before 10.3 from 6.0 onward, all routes are re-validated if the total size of an update received via RTR exceeds the internal socket's buffer size, default 4K on most OSes. An attacker can use this to trigger re-parsing of the RIB for FRR routers using RTR by causing more than th...

7.5CVSS7AI score0.00823EPSS
Exploits0References3
UbuntuCve
UbuntuCve
added 2024/04/30 7:15 p.m.16 views

CVE-2024-34088

In FRRouting FRR through 9.1, it is possible for the getedge function in ospfte.c in the OSPF daemon to return a NULL pointer. In cases where calling functions do not handle the returned NULL value, the OSPF daemon crashes, leading to denial of service...

7.5CVSS7.1AI score0.00689EPSS
Exploits0References2
UbuntuCve
UbuntuCve
added 2024/04/07 9:15 p.m.29 views

CVE-2024-31948

In FRRouting FRR through 9.1, an attacker using a malformed Prefix SID attribute in a BGP UPDATE packet can cause the bgpd daemon to crash...

6.5CVSS6.9AI score0.00825EPSS
Exploits0References3
UbuntuCve
UbuntuCve
added 2023/11/06 6:15 a.m.25 views

CVE-2023-38407

bgpd/bgplabel.c in FRRouting FRR before 8.5 attempts to read beyond the end of the stream during labeled unicast parsing...

7.5CVSS7.1AI score0.00931EPSS
Exploits0References4
UbuntuCve
UbuntuCve
added 2023/11/06 6:15 a.m.15 views

CVE-2023-38406

bgpd/bgpflowspec.c in FRRouting FRR before 8.4.3 mishandles an nlri length of zero, aka a "flowspec overflow."...

9.8CVSS7.1AI score0.00939EPSS
Exploits0References4
UbuntuCve
UbuntuCve
added 2023/09/05 7:15 a.m.31 views

CVE-2023-41909

An issue was discovered in FRRouting FRR through 9.0. bgpnlriparseflowspec in bgpd/bgpflowspec.c processes malformed requests with no attributes, leading to a NULL pointer dereference...

7.5CVSS7.1AI score0.00931EPSS
Exploits0References6
UbuntuCve
UbuntuCve
added 2023/08/29 4:15 a.m.34 views

CVE-2023-41358

An issue was discovered in FRRouting FRR through 9.0. bgpd/bgppacket.c processes NLRIs if the attribute length is zero...

7.5CVSS7.1AI score0.01058EPSS
Exploits0References4
RedHat Linux
RedHat Linux
added 2012/09/12 7:59 p.m.6 views

(ospf6d): Stack-based buffer overflow while decoding Link State Update packet with malformed Inter Area Prefix LSA

The OSPFv3 implementation in ospf6d in Quagga before 0.99.19 allows remote attackers to cause a denial of service out-of-bounds memory access and daemon crash via a Link State Update message with an invalid IPv6 prefix length...

5CVSS7.4AI score0.04668EPSS
Exploits0References4
RedHat Linux
RedHat Linux
added 2012/09/12 7:56 p.m.6 views

(bgpd): Heap-based buffer overflow by decoding BGP UPDATE message with unknown AS_PATH attributes

Heap-based buffer overflow in the ecommunityecom2str function in bgpecommunity.c in bgpd in Quagga before 0.99.19 allows remote attackers to cause a denial of service daemon crash or possibly execute arbitrary code by sending a crafted BGP UPDATE message over IPv4...

7.5CVSS8AI score0.07615EPSS
Exploits0References4
Rows per page
Query Builder