Описание
NLnet Labs' Routinator up to and including version 0.12.1 may crash when trying to parse certain malformed RPKI objects. This is due to insufficient input checking in the bcder library covered by CVE-2023-39914.
Ссылки
- Vendor Advisory
- Vendor Advisory
Уязвимые конфигурации
Конфигурация 1Версия до 0.12.2 (исключая)
cpe:2.3:a:nlnetlabs:routinator:*:*:*:*:*:*:*:*
EPSS
Процентиль: 57%
0.00346
Низкий
7.5 High
CVSS3
Дефекты
CWE-232
NVD-CWE-noinfo
Связанные уязвимости
CVSS3: 7.5
debian
больше 2 лет назад
NLnet Labs' Routinator up to and including version 0.12.1 may crash wh ...
CVSS3: 7.5
github
больше 2 лет назад
NLnet Labs’ Routinator up to and including version 0.12.1 may crash when trying to parse certain malformed RPKI objects. This is due to insufficient input checking in the bcder library covered by CVE-2023-39914.
EPSS
Процентиль: 57%
0.00346
Низкий
7.5 High
CVSS3
Дефекты
CWE-232
NVD-CWE-noinfo