Lucene search

K
veracodeVeracode Vulnerability DatabaseVERACODE:46505
HistoryApr 18, 2024 - 7:09 a.m.

Buffer Overflow

2024-04-1807:09:45
Veracode Vulnerability Database
sca.analysiscenter.veracode.com
6
libfrr.so
buffer overflow
ospf_te_parse_ri
segment routing subtlvs
ospf lsa packets
vulnerability
software

AI Score

6.7

Confidence

High

EPSS

0

Percentile

9.0%

libfrr.so is vulnerable to Buffer Overflow. The vulnerability is due to inadequate validation of the size of Segment Routing subTLVs in ospf_te_parse_ri function within ospf_te.c. An attacker can trigger this vulnerability by crafting OSPF LSA packets with maliciously crafted Segment Routing subTLVs.

CPENameOperatorVersion
libfrr.sole0.0.0
libfrr.sole0.0.0

AI Score

6.7

Confidence

High

EPSS

0

Percentile

9.0%