Lucene search
K

19 matches found

RedHat Linux
RedHat Linux
added 2026/06/08 11:5 a.m.13 views

Important: Red Hat Security Advisory: frr10 security update

An update for frr10 is now available for Red Hat Enterprise Linux 9. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from the...

7.5CVSS5.3AI score0.00389EPSS
Exploits0References3
NVD
NVD
added 2026/06/03 2:16 p.m.15 views

CVE-2026-37460

Missing input validation in the rfapiRibBi2Ri function rfapirib.c of FRRouting FRR stable/10.0 to stable/10.6 allows attackers to cause a Denial of Service DoS via supplying a crafted BGP UPDATE message...

7.5CVSS0.00335EPSS
Exploits0References3
Vulnrichment
Vulnrichment
added 2026/05/04 12:0 a.m.6 views

CVE-2026-37461

An out-of-bounds read in the ParseIP6Extended function /bgp/bgp.go of gobgp v4.3.0 allows attackers to cause a Denial of Service DoS via supplying a crafted BGP UPDATE message...

5.8AI score0.00335EPSS
Exploits0References3
RedhatCVE
RedhatCVE
added 2025/05/21 7:38 p.m.9 views

CVE-2008-2169

Unspecified vulnerability in Avici routers allows remote attackers to cause a denial of service dropped session via crafted BGP UPDATE messages, leading to route flapping, possibly a related issue to CVE-2007-6372...

7.8CVSS6.6AI score0.03745EPSS
Exploits0References1
Prion
Prion
added 2023/11/21 6:15 a.m.36 views

Code injection

The BGP daemon bgpd in IP Infusion ZebOS through 7.10.6 allow remote attackers to cause a denial of service by sending crafted BGP update messages containing a malformed attribute...

5CVSS7.2AI score0.01425EPSS
Exploits1References4Affected Software6
CVE
CVE
added 2023/11/21 12:0 a.m.101 views

CVE-2023-45886

The CVE-2023-45886 issue affects the BGP daemon (bgpd) in IP Infusion ZebOS up to version 7.10.6. It allows remote attackers to cause a DoS by sending crafted BGP UPDATE messages with a malformed attribute. Public sources (Red Hat advisory, CERT VU, and F5/K000137315) corroborate the vulnerabilit...

7.5CVSS7.4AI score0.01425EPSS
Exploits1References4Affected Software1
Cvelist
Cvelist
added 2023/11/21 12:0 a.m.48 views

CVE-2023-45886

The BGP daemon bgpd in IP Infusion ZebOS through 7.10.6 allow remote attackers to cause a denial of service by sending crafted BGP update messages containing a malformed attribute...

7.6AI score0.01425EPSS
Exploits1References4
Tenable Nessus
Tenable Nessus
added 2023/11/14 12:0 a.m.25 views

Fedora 37 : frr (2023-ce436d56f8)

The remote Fedora 37 host has a package installed that is affected by multiple vulnerabilities as referenced in the FEDORA-2023-ce436d56f8 advisory. New version 8.5.3. Tenable has extracted the preceding description block directly from the Fedora security advisory. Note that Nessus has not tested...

9.1CVSS7AI score0.02152EPSS
Exploits3References8
Veracode
Veracode
added 2023/11/06 10:50 a.m.27 views

Denial Of Service (DoS)

libfrr.so is vulnerable to Denial Of service attack. The vulnerability arises due to a lack of validation the bgpattrcheck method. Am attacker can cause a crash by sending a crafted BGP UPDATE message...

7.5CVSS6.9AI score0.00911EPSS
Exploits0References3Affected Software2
UbuntuCve
UbuntuCve
added 2023/11/03 9:15 p.m.32 views

CVE-2023-47234

An issue was discovered in FRRouting FRR through 9.0.1. A crash can occur when processing a crafted BGP UPDATE message with a MPUNREACHNLRI attribute and additional NLRI data that lacks mandatory path attributes...

7.5CVSS7.1AI score0.00911EPSS
Exploits0References3
Vulnrichment
Vulnrichment
added 2023/08/31 11:46 p.m.22 views

CVE-2023-4481 Junos OS and Junos OS Evolved: A crafted BGP UPDATE message allows a remote attacker to de-peer (reset) BGP sessions (CVE-2023-4481)

An Improper Input Validation vulnerability in the Routing Protocol Daemon rpd of Juniper Networks Junos OS and Junos OS Evolved allows an unauthenticated, network-based attacker to cause a Denial of Service DoS. When certain specific crafted BGP UPDATE messages are received over an established BG...

7.5CVSS6.9AI score0.15143EPSS
Exploits0References4
Cvelist
Cvelist
added 2023/08/29 12:0 a.m.19 views

CVE-2023-38802

FRRouting FRR 7.5.1 through 9.0 and Pica8 PICOS 4.3.3.2 allow a remote attacker to cause a denial of service via a crafted BGP update with a corrupted attribute 23 Tunnel Encapsulation...

7.5AI score0.01437EPSS
Exploits1References7
Prion
Prion
added 2021/02/24 8:15 p.m.17 views

Race condition

A vulnerability with the Border Gateway Protocol BGP for Cisco Nexus 9000 Series Fabric Switches in Application Centric Infrastructure ACI mode could allow an unauthenticated, remote attacker to cause a routing process to crash, which could lead to a denial of service DoS condition. This...

7.1CVSS7.4AI score0.01476EPSS
Exploits0References1Affected Software1
Cvelist
Cvelist
added 2021/02/24 7:30 p.m.27 views

CVE-2021-1230 Cisco Nexus 9000 Series Fabric Switches ACI Mode BGP Route Installation Denial of Service Vulnerability

A vulnerability with the Border Gateway Protocol BGP for Cisco Nexus 9000 Series Fabric Switches in Application Centric Infrastructure ACI mode could allow an unauthenticated, remote attacker to cause a routing process to crash, which could lead to a denial of service DoS condition. This...

8.6CVSS8.6AI score0.01476EPSS
Exploits0References1
UbuntuCve
UbuntuCve
added 2013/12/14 5:21 p.m.41 views

CVE-2013-6051

The bgpattrunknown function in bgpattr.c in Quagga 0.99.21 does not properly initialize the total variable, which allows remote attackers to cause a denial of service bgpd crash via a crafted BGP update...

4.3CVSS5.9AI score0.02245EPSS
Exploits0References1
Prion
Prion
added 2011/10/10 10:55 a.m.20 views

Heap overflow

Heap-based buffer overflow in the ecommunityecom2str function in bgpecommunity.c in bgpd in Quagga before 0.99.19 allows remote attackers to cause a denial of service daemon crash or possibly execute arbitrary code by sending a crafted BGP UPDATE message over IPv4...

7.5CVSS8.8AI score0.07615EPSS
Exploits0References16Affected Software1
UbuntuCve
UbuntuCve
added 2011/10/10 12:0 a.m.19 views

CVE-2011-3327

Heap-based buffer overflow in the ecommunityecom2str function in bgpecommunity.c in bgpd in Quagga before 0.99.19 allows remote attackers to cause a denial of service daemon crash or possibly execute arbitrary code by sending a crafted BGP UPDATE message over IPv4...

7.5CVSS7.5AI score0.07615EPSS
Exploits0References3
Prion
Prion
added 2008/05/13 10:20 p.m.24 views

Design/Logic Flaw

Unspecified vulnerability in Century routers allows remote attackers to cause a denial of service dropped session via crafted BGP UPDATE messages, leading to route flapping, possibly a related issue to CVE-2007-6372...

7.1CVSS6.7AI score0.03745EPSS
Exploits0References2
Prion
Prion
added 2008/05/13 10:20 p.m.24 views

Design/Logic Flaw

Unspecified vulnerability in Avici routers allows remote attackers to cause a denial of service dropped session via crafted BGP UPDATE messages, leading to route flapping, possibly a related issue to CVE-2007-6372...

7.1CVSS6.7AI score0.03745EPSS
Exploits0References2Affected Software1
Rows per page
Query Builder