Lucene search
+L

227 matches found

Prion
Prion
added 2023/11/06 6:15 a.m.16 views

Stack overflow

bgpd/bgplabel.c in FRRouting FRR before 8.5 attempts to read beyond the end of the stream during labeled unicast parsing...

5CVSS6.9AI score0.00931EPSS
Exploits0References3Affected Software1
OSV
OSV
added 2023/11/06 6:15 a.m.12 views

UBUNTU-CVE-2023-38407

bgpd/bgplabel.c in FRRouting FRR before 8.5 attempts to read beyond the end of the stream during labeled unicast parsing...

7.5CVSS7.3AI score0.00931EPSS
Exploits0References5
Vulnrichment
Vulnrichment
added 2023/11/06 12:0 a.m.24 views

CVE-2023-38407

bgpd/bgplabel.c in FRRouting FRR before 8.5 attempts to read beyond the end of the stream during labeled unicast parsing...

6.5AI score0.00931EPSS
Exploits0References4
Cvelist
Cvelist
added 2023/11/06 12:0 a.m.18 views

CVE-2023-38407

bgpd/bgplabel.c in FRRouting FRR before 8.5 attempts to read beyond the end of the stream during labeled unicast parsing...

8.6AI score0.00931EPSS
Exploits0References4
Debian CVE
Debian CVE
added 2023/11/06 12:0 a.m.24 views

CVE-2023-38407

bgpd/bgplabel.c in FRRouting FRR before 8.5 attempts to read beyond the end of the stream during labeled unicast parsing...

7.5CVSS7.4AI score0.00931EPSS
Exploits0
OSV
OSV
added 2023/09/25 10:1 p.m.12 views

OPENSUSE-SU-2023:0267-1 Security update for tcpreplay

This update for tcpreplay fixes the following issues: Update to 4.4.4: overflow check fix for parsempls. tcpreplay-edit: prevent L2 flooding of ipv6 unicast packets. CVE-2023-27786: bugs caused by strtokr. boo1209416 CVE-2023-27783 reachable assert in tcpeditdltcleanup boo1209413 reachable assert...

7.5CVSS7.7AI score0.01506EPSS
Exploits2References5
FreeBSD
FreeBSD
added 2023/09/06 12:0 a.m.29 views

FreeBSD -- Wi-Fi encryption bypass

Problem Description: The net80211 subsystem would fallback to the multicast key for unicast traffic in the event the unicast key was removed. This would result in buffered unicast traffic being exposed to any stations with access to the multicast key. Impact: As described in the "Framing Frames:...

7.5CVSS7AI score0.00897EPSS
Exploits1
ATTACKERKB
ATTACKERKB
added 2023/07/24 4:15 p.m.5 views

CVE-2023-3748

A flaw was found in FRRouting when parsing certain babeld unicast hello messages that are intended to be ignored. This issue may allow an attacker to send specially crafted hello messages with the unicast flag set, the interval field set to 0, or any TLV that contains a sub-TLV with the Mandatory...

7.5CVSS5.7AI score0.00662EPSS
Exploits0References3
OSV
OSV
added 2023/07/24 4:15 p.m.4 views

DEBIAN-CVE-2023-3748

A flaw was found in FRRouting when parsing certain babeld unicast hello messages that are intended to be ignored. This issue may allow an attacker to send specially crafted hello messages with the unicast flag set, the interval field set to 0, or any TLV that contains a sub-TLV with the Mandatory...

7.5CVSS6.1AI score0.00662EPSS
Exploits0References1
Prion
Prion
added 2023/07/24 4:15 p.m.13 views

Design/Logic Flaw

A flaw was found in FRRouting when parsing certain babeld unicast hello messages that are intended to be ignored. This issue may allow an attacker to send specially crafted hello messages with the unicast flag set, the interval field set to 0, or any TLV that contains a sub-TLV with the Mandatory...

5CVSS7.2AI score0.00662EPSS
Exploits0References2Affected Software1
Vulnrichment
Vulnrichment
added 2023/07/24 3:19 p.m.14 views

CVE-2023-3748 Inifinite loop in babld message parsing may cause dos

A flaw was found in FRRouting when parsing certain babeld unicast hello messages that are intended to be ignored. This issue may allow an attacker to send specially crafted hello messages with the unicast flag set, the interval field set to 0, or any TLV that contains a sub-TLV with the Mandatory...

3.5CVSS6.5AI score0.00662EPSS
Exploits0References2
CVE
CVE
added 2023/07/24 3:19 p.m.79 views

CVE-2023-3748

CVE-2023-3748 affects FRRouting (FRR) where parsing of certain babeld unicast hello messages that are intended to be ignored can be abused by sending crafted Hello messages with the unicast flag set, the interval field as 0, or a TLV containing a sub‑TLV with the Mandatory flag. This can enter an...

7.5CVSS5.2AI score0.00662EPSS
Exploits0References2Affected Software1
OSV
OSV
added 2023/07/24 3:19 p.m.21 views

CVE-2023-3748 Inifinite loop in babld message parsing may cause dos

A flaw was found in FRRouting when parsing certain babeld unicast hello messages that are intended to be ignored. This issue may allow an attacker to send specially crafted hello messages with the unicast flag set, the interval field set to 0, or any TLV that contains a sub-TLV with the Mandatory...

3.5CVSS6.6AI score0.00662EPSS
Exploits0References6
Positive Technologies
Positive Technologies
added 2023/07/24 12:0 a.m.5 views

PT-2023-9209 · Frrouting +4 · Frrouting +4

Name of the Vulnerable Software and Affected Versions: FRRouting affected versions not specified Description: A flaw was found in FRRouting when parsing certain babeld unicast hello messages that are intended to be ignored. This issue may allow an attacker to send specially crafted hello messages...

9.8CVSS7.5AI score0.02152EPSS
Exploits3References98
SUSE CVE
SUSE CVE
added 2023/07/19 2:3 a.m.5 views

SUSE CVE-2023-3748

A flaw was found in FRRouting when parsing certain babeld unicast hello messages that are intended to be ignored. This issue may allow an attacker to send specially crafted hello messages with the unicast flag set, the interval field set to 0, or any TLV that contains a sub-TLV with the Mandatory...

6.2CVSS6.5AI score0.00662EPSS
Exploits0References5
Positive Technologies
Positive Technologies
added 2023/03/05 12:0 a.m.6 views

PT-2023-9206 · Frrouting +9 · Frrouting +9

Name of the Vulnerable Software and Affected Versions: FRRouting versions prior to 8.5 Description: The issue is related to the bgpd/bgp label.c file in FRRouting, which attempts to read beyond the end of the stream during labeled unicast parsing. This can be exploited by a remote attacker to cau...

9.8CVSS7.5AI score0.02152EPSS
Exploits10References177
F5 Networks
F5 Networks
added 2023/02/21 6:19 p.m.13 views

K16844: Multicast DNS vulnerability VU#550620

Security Advisory Description Multicast DNS implementations may respond to unicast queries that originate from sources outside of the local link network. Such responses may disclose information about network devices or be used in denial-of-service DoS amplification attacks. VU550620 Impact None. ...

6.5AI score
Exploits0
SUSE CVE
SUSE CVE
added 2023/02/15 6:4 a.m.5 views

SUSE CVE-2009-0758

The originatesfromlocallegacyunicastsocket function in avahi-core/server.c in avahi-daemon 0.6.23 does not account for the network byte order of a port number when processing incoming multicast packets, which allows remote attackers to cause a denial of service network bandwidth and CPU consumpti...

7.8CVSS6.8AI score0.02011EPSS
Exploits0References4
SUSE CVE
SUSE CVE
added 2023/02/15 5:58 a.m.4 views

SUSE CVE-2010-2522

The mipv6 daemon in UMIP 0.4 does not verify that netlink messages originated in the kernel, which allows local users to spoof netlink socket communication via a crafted unicast message...

2.1CVSS6.5AI score0.00337EPSS
Exploits0References4
SUSE CVE
SUSE CVE
added 2023/02/15 5:50 a.m.4 views

SUSE CVE-2011-3605

The processrs function in the router advertisement daemon radvd before 1.8.2, when UnicastOnly is enabled, allows remote attackers to cause a denial of service temporary service hang via a large number of NDROUTERSOLICIT requests...

5CVSS6.8AI score0.01595EPSS
Exploits0References3
Rows per page
Query Builder