CVE-2024-53580

Опубликовано: 18 дек. 2024

Источник: nvd

CVSS3: 7.5

EPSS Низкий

Описание

iperf v3.17.1 was discovered to contain a segmentation violation via the iperf_exchange_parameters() function.

Ссылки

https://gist.github.com/neolead/663badf2ebefefa6fe4303695e7aa7a3
Exploit
Third Party Advisory
https://github.com/esnet/iperf/releases/tag/3.18
Release Notes
https://lists.debian.org/debian-lts-announce/2025/01/msg00027.html
https://security.netapp.com/advisory/ntap-20250404-0009/
Third Party Advisory
https://gist.github.com/neolead/663badf2ebefefa6fe4303695e7aa7a3
Exploit
Third Party Advisory

Уязвимые конфигурации

Конфигурация 1

cpe:2.3:a:es:iperf3:3.17.1:*:*:*:*:*:*:*

Конфигурация 2

cpe:2.3:a:netapp:ontap_9:-:*:*:*:*:*:*:*

Конфигурация 3

Одновременно

cpe:2.3:o:netapp:hci_compute_node:-:*:*:*:*:*:*:*

cpe:2.3:h:netapp:hci_compute_node:-:*:*:*:*:*:*:*

EPSS

Процентиль: 71%

0.00687

Низкий

7.5 High

CVSS3

Дефекты

CWE-476

Связанные уязвимости

CVE-2024-53580

CVSS3: 7.5

ubuntu

11 месяцев назад

iperf v3.17.1 was discovered to contain a segmentation violation via the iperf_exchange_parameters() function.

CVE-2024-53580

CVSS3: 7.5

redhat

11 месяцев назад

iperf v3.17.1 was discovered to contain a segmentation violation via the iperf_exchange_parameters() function.

CVE-2024-53580

CVSS3: 7.5

msrc

10 месяцев назад

Описание отсутствует

CVE-2024-53580

CVSS3: 7.5

debian

11 месяцев назад

iperf v3.17.1 was discovered to contain a segmentation violation via t ...

SUSE-SU-2025:0291-1

suse-cvrf

10 месяцев назад

Security update for iperf

EPSS

Процентиль: 71%

0.00687

Низкий

7.5 High

CVSS3

Дефекты

CWE-476