Lucene search
UbuntuUSN-6240-1HistoryJul 24, 2023 - 12:00 a.m.
FRR vulnerability
2023-07-2400:00:00
ubuntu.com
29
frrouting suite
internet protocols
denial of service
ubuntu 23.04
vulnerability
frr
incorrect message handling
CVSS3
7.5
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
HIGH
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
AI Score
7.6
Confidence
High
EPSS
0.001
Percentile
33.4%
Releases
- Ubuntu 23.04
Packages
- frr - FRRouting suite of internet protocols
Details
It was discovered that FRR incorrectly handled certain messages.
An attacker could possibly use this issue to cause a denial of service.
| OS | Version | Architecture | Package | Version | Filename |
|---|---|---|---|---|---|
| Ubuntu | 23.04 | noarch | frr | < 8.4.2-1ubuntu1.2 | UNKNOWN |
| Ubuntu | 23.04 | noarch | frr-dbgsym | < 8.4.2-1ubuntu1.2 | UNKNOWN |
| Ubuntu | 23.04 | noarch | frr-doc | < 8.4.2-1ubuntu1.2 | UNKNOWN |
| Ubuntu | 23.04 | noarch | frr-pythontools | < 8.4.2-1ubuntu1.2 | UNKNOWN |
| Ubuntu | 23.04 | noarch | frr-rpki-rtrlib | < 8.4.2-1ubuntu1.2 | UNKNOWN |
| Ubuntu | 23.04 | noarch | frr-rpki-rtrlib-dbgsym | < 8.4.2-1ubuntu1.2 | UNKNOWN |
| Ubuntu | 23.04 | noarch | frr-snmp | < 8.4.2-1ubuntu1.2 | UNKNOWN |
| Ubuntu | 23.04 | noarch | frr-snmp-dbgsym | < 8.4.2-1ubuntu1.2 | UNKNOWN |
References
Related
veracode
veracode
Infinite Loop
2024-03-11 20:12:37
nvd
nvd
CVE-2023-3748
2023-07-24 16:15:13
cve
cve
CVE-2023-3748
2023-07-24 16:15:13
openvas
openvas
Ubuntu: Security Advisory (USN-6240-1)
2023-07-25 00:00:00
openSUSE: Security Advisory for frr (SUSE-SU-2023:3709-1)
2024-03-04 00:00:00
debiancve
debiancve
CVE-2023-3748
2023-07-24 16:15:13
nessus
nessus
Ubuntu 23.04 : FRR vulnerability (USN-6240-1)
2023-07-24 00:00:00
SUSE SLES15 / openSUSE 15 Security Update : frr (SUSE-SU-2023:3709-1)
2023-09-21 00:00:00
prion
prion
Design/Logic Flaw
2023-07-24 16:15:00
redhatcve
redhatcve
CVE-2023-3748
2023-07-18 14:09:34
ubuntucve
ubuntucve
CVE-2023-3748
2023-07-19 00:00:00
cvelist
cvelist
CVE-2023-3748 Inifinite loop in babld message parsing may cause dos
2023-07-24 15:19:20
osv
osv
CVE-2023-3748
2023-07-24 16:15:13
frr-8.4-5.1 on GA media
2024-06-15 00:00:00
vulnrichment
vulnrichment
CVE-2023-3748 Inifinite loop in babld message parsing may cause dos
2023-07-24 15:19:20
redos
redos
ROS-20240617-02
2024-06-17 00:00:00
CVSS3
7.5
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
HIGH
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
AI Score
7.6
Confidence
High
EPSS
0.001
Percentile
33.4%
Related for USN-6240-1