Frrouting Security Vulnerabilities and Issues — Frrouting CVE List

Lucene search

FrroutingFrrouting

4 matches found

CVE•added 2023/11/03 9:15 p.m.•102 views

CVE-2023-47234

An issue was discovered in FRRouting FRR through 9.0.1. A crash can occur when processing a crafted BGP UPDATE message with a MP_UNREACH_NLRI attribute and additional NLRI data (that lacks mandatory path attributes).

7.5CVSS8.1AI score0.00141EPSS

CVE•added 2023/11/03 9:15 p.m.•97 views

CVE-2023-47235

An issue was discovered in FRRouting FRR through 9.0.1. A crash can occur when a malformed BGP UPDATE message with an EOR is processed, because the presence of EOR does not lead to a treat-as-withdraw outcome.

7.5CVSS7.2AI score0.00099EPSS

CVE•added 2023/11/06 6:15 a.m.•94 views

CVE-2023-38406

bgpd/bgp_flowspec.c in FRRouting (FRR) before 8.4.3 mishandles an nlri length of zero, aka a "flowspec overflow."

9.8CVSS9.2AI score0.00134EPSS

CVE•added 2023/11/06 6:15 a.m.•87 views

CVE-2023-38407

bgpd/bgp_label.c in FRRouting (FRR) before 8.5 attempts to read beyond the end of the stream during labeled unicast parsing.

7.5CVSS7.2AI score0.00148EPSS